S.D.L.V. Dasanayake
Devsecops for continuous security in trading software application development: a systematic literature review.
Dasanayake, S.D.L.V.; Senanayake, J.; Wijayanayake, W.M.J.I.
Abstract
This systematic literature review examined the implementation of DevSecOps for continuous security in financial trading software application development. This review identifies key strategies and security frameworks, analyses cybersecurity threats specific to trading applications, explores secure coding practices, and discusses the transition from DevOps to DevSecOps, focusing on security. A comprehensive search was conducted across multiple databases up to July 9, 2024. The study aimed to identify best practices for integrating security into every phase of the software development process, from initial design to deployment and maintenance. This included automated security testing, continuous monitoring, and incident response strategies tailored for financial trading platforms. The review also delved into the challenges faced by developers in the financial sector, such as compliance with stringent regulatory requirements and the need to protect highly sensitive financial data. Furthermore, it evaluated the effectiveness of current security frameworks in mitigating risks associated with trading software, including common vulnerabilities and attack vectors. The study had limitations, including the exclusive consideration of the most recent threats, potentially overlooking relevant historical data. Additionally, the focus on financial trading applications may limit the generalizability of the findings to other domains. Despite these limitations, the results highlighted the critical importance of incorporating DevSecOps concepts into software development processes to enhance the security and resilience of financial trading systems in an increasingly hostile cyber environment. This research underscores the need for continuous adaptation and improvement in security practices to keep up with evolving threats.
Citation
DASANAYAKE, S.D.L.V., SENANAYAKE, J. and WIJAYANAYAKE, W.M.J.I. 2024. Devsecops for continuous security in trading software application development: a systematic literature review. Journal of desk research review and analysis [online], 2(2), pages 215-232. Available from: https://doi.org/10.4038/jdrra.v2i2.52
Journal Article Type | Article |
---|---|
Acceptance Date | Oct 22, 2024 |
Online Publication Date | Jan 16, 2025 |
Publication Date | Dec 31, 2024 |
Deposit Date | Jan 21, 2025 |
Publicly Available Date | Jan 21, 2025 |
Journal | Journal of desk research review and analysis |
Print ISSN | 3030-7007 |
Electronic ISSN | 3030-7015 |
Publisher | University of Kelaniya |
Peer Reviewed | Peer Reviewed |
Volume | 2 |
Issue | 2 |
Pages | 215-232 |
DOI | https://doi.org/10.4038/jdrra.v2i2.52 |
Keywords | DevSecOps; Frameworks; Security; Threats; Trading |
Public URL | https://rgu-repository.worktribe.com/output/2663063 |
Files
DASANAYAKE 2024 Devsecops for continuous (VOR)
(436 Kb)
PDF
Publisher Licence URL
https://creativecommons.org/licenses/by-sa/4.0/
Copyright Statement
© 2024 by The Library, University of Kelaniya, Sri Lanka.
You might also like
Android source code vulnerability detection: a systematic literature review.
(2023)
Journal Article
Android mobile malware detection using machine learning: a systematic review.
(2021)
Journal Article
Developing secured android applications by mitigating code vulnerabilities with machine learning.
(2022)
Presentation / Conference Contribution
Downloadable Citations
About OpenAIR@RGU
Administrator e-mail: publications@rgu.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search