Towards a Blockchain-Based CI/CD Framework to Enhance Security in Cloud Environments

Sabbir M. Saleh; Nazim Madhavji; John Steinbacher

doi:10.5220/0013298200003928

Towards a Blockchain-Based CI/CD Framework to Enhance Security in Cloud Environments

Sabbir M. Saleh, Nazim Madhavji, John Steinbacher

2025

Abstract

Security is becoming a pivotal point in cloud platforms. Several divisions, such as business organisations, health care, government, etc., have experienced cyber-attacks on their infrastructures. This research focuses on security issues within Continuous Integration and Deployment (CI/CD) pipelines in a cloud platform as a reaction to recent cyber breaches. This research proposes a blockchain-based solution to enhance CI/CD pipeline security. This research aims to develop a framework that leverages blockchain’s distributed ledger technology and tamper-resistant features to improve CI/CD pipeline security. The goal is to emphasise secure software deployment by integrating threat modelling frameworks and adherence to coding standards. It also aims to employ tools to automate security testing to detect publicly disclosed vulnerabilities and flaws, such as an outdated version of Java Spring Framework, a JavaScript library from an unverified source, or a database library that allows SQL injection attacks in the deployed software through the framework.

Download

Paper Citation

in Harvard Style

Saleh S., Madhavji N. and Steinbacher J. (2025). Towards a Blockchain-Based CI/CD Framework to Enhance Security in Cloud Environments. In Proceedings of the 20th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE; ISBN 978-989-758-742-9, SciTePress, pages 557-564. DOI: 10.5220/0013298200003928

in Bibtex Style

@conference{enase25,
author={Sabbir Saleh and Nazim Madhavji and John Steinbacher},
title={Towards a Blockchain-Based CI/CD Framework to Enhance Security in Cloud Environments},
booktitle={Proceedings of the 20th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE},
year={2025},
pages={557-564},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013298200003928},
isbn={978-989-758-742-9},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 20th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE
TI - Towards a Blockchain-Based CI/CD Framework to Enhance Security in Cloud Environments
SN - 978-989-758-742-9
AU - Saleh S.
AU - Madhavji N.
AU - Steinbacher J.
PY - 2025
SP - 557
EP - 564
DO - 10.5220/0013298200003928
PB - SciTePress