RT info:eu-repo/semantics/article
T1 SecDocker: Hardening the Continuous Integration Workflow
A1 Fernández González, David
A1 Rodríguez Lera, Francisco Javier
A1 Esteban, Gonzalo
A1 Fernández Llamas, Camino
A2 Ciencias de la Computacion e Inteligencia Artificial
K1 Informática
K1 Ingeniería de sistemas
K1 Containerization 
K1 Continuous integration 
K1 Docker
AB [EN] Current Continuous Integration (CI) processes face significant intrinsic cybersecurity challenges. The idea is not only to solve and test formal or regulatory security requirements of source code but also to adhere to the same principles to the CI pipeline itself. This paper presents an overview of current security issues in CI workflow. It designs, develops, and deploys a new tool for the secure deployment of a container-based CI pipeline flow without slowing down release cycles. The tool, called  SecDocker  for its Docker-based approach, is publicly available in GitHub. It implements a transparent application f irewall based on a configuration mechanism avoiding issues in the CI workflow associated with intended or unintended container  configurations.  Integrated  with  other  DevOps  Engineers  tools,  it  provides  feedback  from  only  those  scenarios  that match  specific  patterns,  addressing  future  container security  issues.
PB Springer
SN 2662-995X
LK http://hdl.handle.net/10612/14043
UL http://hdl.handle.net/10612/14043
NO Fernández González, D., Rodríguez Lera, F.J., Esteban, G. et al. SecDocker: Hardening the Continuous Integration Workflow. SN COMPUT. SCI. 3, 80 (2022). https://doi.org/10.1007/s42979-021-00939-4
NO 1-13 p.
DS BULERIA. Repositorio Institucional de la Universidad de León
RD 25-abr-2024