S.D.L.V. Dasanayake
DevSecOps implementation for continuous security in financial trading software application development.
Dasanayake, S.D.L.V.; Senanayake, Janaka; Wijayanayake, W.M.J.I.
Abstract
DevSecOps incorporates security into the DevOps workflow, ensuring robust protection throughout the software development lifecycle. This research addresses the security gaps in financial trading applications, where traditional methods often prioritize speed over security. Using the Design Science Research Methodology (DSRM), the study examines secure coding practices, regulatory compliance, and incident response strategies. Findings highlight the benefits of embedding automated security testing and continuous monitoring to enhance resilience against evolving threats. Tailored developer training addresses knowledge gaps specific to trading platforms, ensuring compliance with regulatory demands and safeguarding sensitive financial data. By accelerating deployment timelines while strengthening security and compliance, this study demonstrates the critical role of a DevSecOps model in creating scalable, secure, and resilient trading applications.
Citation
DASANAYAKE, S.D.L.V., SENANAYAKE, J. and WIJAYANAYAKE, W.M.J.I. 2025. DevSecOps implementation for continuous security in financial trading software application development. In Proceedings of the 25th International conference on advanced research in computing 2025 (ICARC 2025): converging horizons: uniting disciplines in computing research through AI innovation, 19-20 February 2025, Belihuloya, Sri Lanka. Piscataway: IEEE [online], pages 457-462. Available from: https://doi.org/10.1109/ICARC64760.2025.10963292
| Presentation Conference Type | Conference Paper (published) |
|---|---|
| Conference Name | 5th International conference on advanced research in computing 2025 (ICARC 2025): converging horizons: uniting disciplines in computing research through AI innovation |
| Start Date | Feb 19, 2025 |
| End Date | Feb 20, 2025 |
| Acceptance Date | Jan 1, 2025 |
| Online Publication Date | Feb 19, 2025 |
| Publication Date | Dec 31, 2025 |
| Deposit Date | Apr 24, 2025 |
| Publicly Available Date | Apr 24, 2025 |
| Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
| Peer Reviewed | Peer Reviewed |
| Pages | 457-462 |
| ISBN | 9798331530983 |
| DOI | https://doi.org/10.1109/icarc64760.2025.10963292 |
| Keywords | DevSecOps; Cybersecurity; Financial trading; Secure coding; Continuous monitoring |
| Public URL | https://rgu-repository.worktribe.com/output/2801540 |
Files
DASANAYAKE 2025 DevSecOps (AAM)
(220 Kb)
PDF
Publisher Licence URL
https://creativecommons.org/licenses/by/4.0/
Copyright Statement
© 2025 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
You might also like
Android code vulnerabilities early detection using AI-powered ACVED plugin.
(2023)
Presentation / Conference Contribution
Labelled Vulnerability Dataset on Android source code (LVDAndro) to develop AI-based code vulnerability detection models.
(2023)
Presentation / Conference Contribution
AI-powered vulnerability detection for secure source code development.
(2023)
Presentation / Conference Contribution
Downloadable Citations
About OpenAIR@RGU
Administrator e-mail: publications@rgu.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search