Sign In Start Free Trial
Account

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Hands-On Security in DevOps
  • Table Of Contents Toc
Hands-On Security in DevOps

Hands-On Security in DevOps

By : Tony Hsiang-Chih Hsu
3.3 (13)
close
close
Hands-On Security in DevOps

Hands-On Security in DevOps

3.3 (13)
By: Tony Hsiang-Chih Hsu

Overview of this book

DevOps has provided speed and quality benefits with continuous development and deployment methods, but it does not guarantee the security of an entire organization. Hands-On Security in DevOps shows you how to adopt DevOps techniques to continuously improve your organization’s security at every level, rather than just focusing on protecting your infrastructure. This guide combines DevOps and security to help you to protect cloud services, and teaches you how to use techniques to integrate security directly in your product. You will learn how to implement security at every layer, such as for the web application, cloud infrastructure, communication, and the delivery pipeline layers. With the help of practical examples, you’ll explore the core security aspects, such as blocking attacks, fraud detection, cloud forensics, and incident response. In the concluding chapters, you will cover topics on extending DevOps security, such as risk assessment, threat modeling, and continuous security. By the end of this book, you will be well-versed in implementing security in all layers of your organization and be confident in monitoring and blocking attacks throughout your cloud services.
Table of Contents (23 chapters)
close
close

Behavior-driven security testing framework

BDD security testing is very suitable when your security testing reports will be shared with external vendors, or even internal, cross-team communication to understand what security testing cases are being executed. In addition, BDD security tests can help you to integrate all of the various kinds of security testing tools and consolidate testing reports based on the framework.

Let's look at a simple example to understand what behavior-driven security testing is. Under the behavior-driven security testing framework, the security testing scripts are the testing cases that are written in a human-readable language. It makes the security testing cases, and testing results, easily understood by non-security professionals. Here is an example of this human-readable script:

Scenario: The attack may execute a system command to gain...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Hands-On Security in DevOps
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected

Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon