NCI WEBSITE
NORMA eResearch @NCI Library

The Hyperautomation of Software Security Patch Management in Enterprise Networks: A Case Study at the Central Bank of Ireland

Tools

Alabi, Oluwasefunmi Moyinoluwa (2023) The Hyperautomation of Software Security Patch Management in Enterprise Networks: A Case Study at the Central Bank of Ireland. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (560kB) | Preview
[thumbnail of Configuration manual]
Preview
 PDF (Configuration manual)
Download (1MB) | Preview

Abstract

Several studies have shown that delays in patching software vulnerabilities results in a number of devastating cybersecurity attacks. While software security patch management automation has received a lot of recognition from practitioners and researchers, there has been relatively little effort put into gaining automated assistance for various security patch management processes and tasks which have the potential to significantly shorten the time it takes to install security fixes and further improve software security management. However, it is additionally essential to comprehend how automation is applied in practise, its limitations in meeting real-world objectives, and what security practitioners actually want. This is an area of study that has yet to be experimentally explored in the research on software engineering.

In order to investigate various elements of hyperautomation and automation for security patch management, this study administered research interview to 10 security professionals working in the technology delivery and Information security teams respectively within the Central Bank of Ireland, after which a proof-of-concept implementation of an improved solution is implemented from its findings. The findings focus on the role of automation and hyperautomation in security patch management for unveiling data about the present status of automation in practise, its constraints and how hyperautomation support can be improved to successfully meet practitioners' demands, and the role of humans in an automated process. A series of recommendations is developed on how to focus future work on creating automated assistance for security patch management to support this based on the findings.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Sahni, Vikas
UNSPECIFIED
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
H Social Sciences > HG Finance > Banking
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Tamara Malone
Date Deposited: 24 Apr 2023 14:12
Last Modified: 24 Apr 2023 14:12
URI: https://norma.ncirl.ie/id/eprint/6506

Actions (login required)

View Item View Item