Report cover image

Future of Digital Innovation and DevSecOps: Understanding and Securing the Attack Vectors of the Modern Software Supply Chain

Publisher IDC
Published Mar 30, 2023
Length 13 Pages
SKU # IDC17840693

Description

Future of Digital Innovation and DevSecOps: Understanding and Securing the Attack Vectors of the Modern Software Supply Chain

This IDC Perspective provides insights into the various dimensions of the software supply chain that can be attacked by bad actors, with actionable insight into practices and tools for helping to secure the software supply chains."There has been an exponential increase in the number of software supply chain breaches in recent years as bad actors view it as a soft target for attack," said Jim Mercer, research vice president of DevOps and DevSecOps, IDC. "This growing threat of software supply chain attacks should compel organizations to examine their application software supply chains and do what they must to harden them to avoid being breached."

Please Note: Extended description available upon request.

Table of Contents

13 Pages
Executive Snapshot
Situation Overview
Alignment with Broader Business Outcomes
Implications of the Software Supply Chain
Top Investment Priorities
Advice for the Technology Buyer
Identity and Access Management
Authentication
Role-Based Access Control
Secrets
Discovery
Management
Open Source
Embedded Open Source Software
SCA and SBOM
SBOM Management
Open Source Project Intelligence
Source Code
Source Code Management Configuration
Everything as Code
Code Reviews
Code Leakage
Software Provenance
Build
Standardized Pipelines
Autonomous Build Steps
Secure Base Images
Deterministic Builds
Consider the Composition of the Entire Pipeline
Deploy
Infrastructure as Code Security
Cloud Security Posture Management
Patching Vulnerabilities
Runtime Dynamic SBOMs
Standards
General Guidance
Learn More
Related Research
Synopsis

Pricing

Currency Rates
How Do Licenses Work?

How Do Licenses Work?

The primary function of a report license is to define how many people within a company are authorized to use the purchased report. This is separate to how a report might be delivered. Unless specifically identified otherwise, the purchase option is Single User. Below is a helpful description of that license, along with a sampling of others most commonly offered.

  • This license allows only one user to have access to and to use/read the report. It is not one user at a time or one user group; it is an individual who will be reading and utilizing the report.

  • This license allows for the entire purchasing company to read and use the report. This is the license level that would allow for a report to be placed on an internal company shared drive for access by all employees of that direct company. This license does not extend to parent or sister company use.

  • This license is designed to allow an entire department within a company full access to a report. The departmental license is a great option for companies that have more than one location and the department is spread out all over the country/world

  • This license is for companies that have one location where they want the report to be accessible by all employees within that physical location.

  • This is the most flexible of the licensing options. Some publishers will allow you to get a license for a preset number of people (typically 5). These licenses are ideal for small work groups.

License options are at the discretion of each publisher. As such, not all licenses indicated above are available for every product. If you are uncertain of the best license for your needs or would like a license that is not proactively available, please contact us and we will be happy to assist.

Head shot

Questions or Comments?

Our team has the ability to search within reports to verify it suits your needs. We can also help maximize your budget by finding sections of reports you can purchase.
Chat Now
Contact Us