A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing

Sabbir M. Saleh; Nazim Madhavji; John Steinbacher

doi:10.5220/0013018500003825

A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing

Sabbir M. Saleh, Nazim Madhavji, John Steinbacher

2024

Abstract

As cloud environments become widespread, cybersecurity has emerged as a top priority across areas such as networks, communication, data privacy, response times, and availability. Various sectors, including industries, healthcare, and government, have recently faced cyberattacks targeting their computing systems. Ensuring secure app deployment in cloud environments requires substantial effort. With the growing interest in cloud security, conducting a systematic literature review (SLR) is critical to identifying research gaps. Continuous Software Engineering, which includes continuous integration (CI), delivery (CDE), and deployment (CD), is essential for software development and deployment. In our SLR, we reviewed 66 papers, summarising tools, approaches, and challenges related to the security of CI/CD in the cloud. We addressed key aspects of cloud security and CI/CD and reported on tools such as Harbor, SonarQube, and GitHub Actions. Challenges such as image manipulation, unauthorised access, and weak authentication were highlighted. The review also uncovered research gaps in how tools and practices address these security issues in CI/CD pipelines, revealing a need for further study to improve cloud-based security solutions.

Download

Paper Citation

in Harvard Style

M. Saleh S., Madhavji N. and Steinbacher J. (2024). A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing. In Proceedings of the 20th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST; ISBN 978-989-758-718-4, SciTePress, pages 331-341. DOI: 10.5220/0013018500003825

in Bibtex Style

@conference{webist24,
author={Sabbir M. Saleh and Nazim Madhavji and John Steinbacher},
title={A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing},
booktitle={Proceedings of the 20th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST},
year={2024},
pages={331-341},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013018500003825},
isbn={978-989-758-718-4},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 20th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST
TI - A Systematic Literature Review on Continuous Integration and Deployment (CI/CD) for Secure Cloud Computing
SN - 978-989-758-718-4
AU - M. Saleh S.
AU - Madhavji N.
AU - Steinbacher J.
PY - 2024
SP - 331
EP - 341
DO - 10.5220/0013018500003825
PB - SciTePress