Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Securing the Continuous Integration Process

OWASP Foundation via YouTube

Start learning Write review
Corporate Finance Institute Ad

35% Off Finance Skills That Get You Hired - Code CFI35

Learn More → Pragmatic Institute Ad

Foundations for Product Management Success

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the security implications of continuous integration (CI) in software development through this OWASP Foundation conference talk. Gain insights into best practices for implementing CI within a secure Software Development Life Cycle (SDLC). Learn about technology and process changes involved in setting up a CI environment, focusing on essential security features rather than specific tools or vendors. Discover the basic CI cycle, importance of environment isolation, version control servers, integration build servers, and feedback mechanisms. Delve into CI maturity models, code reviews, root-cause analysis, and chain of custody. Understand why "on commit" practices are beneficial for secure development. This presentation provides valuable guidance for organizations of all sizes across various technology stacks and problem domains looking to enhance their CI security.

Syllabus

Intro
This is not tools talk
Basic Cl cycle
Isolate your environment
Version control server
Integration build server
Feedback mechanism
CI Maturity model
Code reviews
Root-cause Analysis
Chain of custody
"On commit" is great

Taught by

OWASP Foundation

Reviews

Start your review of Securing the Continuous Integration Process

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.