NATIONAL COLLEGE OF IRELAND Page 1 of 4 National College of Ireland MSc in Cloud Computing, Year 1, MSCCLOUD1_JAN21I Postgraduate Diploma in Science in Cloud Computing, Year 1, PGDCLOUD_SEP Semester...

1 answer below »
NATIONAL COLLEGE OF IRELAND

Page 1 of 4








National College of Ireland

MSc in Cloud Computing, Year 1, MSCCLOUD1_JAN21I
Postgraduate Diploma in Science in Cloud Computing, Year 1, PGDCLOUD_SEP


Semester Two Terminal Assignment-based Assessment (TABA) – 2020/21

Release Date on Moodle: 27th of April 2021 @9:00am
Online Moodle Submission Deadline: Thursday 13th of May 2021 @23:55

______________________________________________________________________
Cloud DevOpsSec




IMPORTANT: It is your responsibility to avoid plagiarism. Please read the comprehensive
guidelines on academic honesty and academic integrity, and how to avoid plagiarism made
available by the NCI Library (https://libguides.ncirl.ie/referencingandavoidingplagiarism).
NOTE: YOU ARE NOT ALLOWED TO PUBLISH THIS ASSIGNMENT BRIEF OR A PART THEREOF
ON ANY WEBSITES. YOU ARE NOT ALLOWED TO PUBLISH/SHARE YOUR SOLUTION WITH
OTHERS. All work submitted should be your own. Conferring with others is not permitted.
Note that all submissions will be electronically screened (via Turnitin) for evidence of academic
misconduct (i.e. plagiarism and collusion).


https://libguides.ncirl.ie/referencingandavoidingplagiarism

Page 2 of 4
Introduction

The assessment of the Cloud DevOpsSec module is based on two assessment components: a) Project
which represents 60% of the module assessment, and b) Terminal Assessment which represents 40%
of the module assessment.

The learning outcomes of the Cloud DevOpsSec module are as follows:
LO1. Critically analyse different techniques to perform code analysis, plan and implement
static code analysis.
LO2. Develop and implement a plan for provisioning and configuration of software applications
through CI/CD.
LO3. Critically evaluate and implement methodologies for secure application development
and secure execution in production.

This document presents the details of the Terminal Assignment-based Assessment (TABA) of Cloud
DevOpsSec module. The TABA assesses LO1, LO2 and LO3.



Assignment Description

A company has commissioned you to prepare a case study to develop a plan for provisioning and
configuration of web applications through a full lifecycle CI/CD pipeline. You are required to prepare a
report to document the case study for software applications created primarily in a specific programming
language. The programming language is assigned based on the penultimate i.e. second to last digit of
your Student ID as described in the Table 1 Programming Language. The company asks you to identify
all the relevant cloud-based services offered by Amazon Web Services (AWS) and third-party tools that
enable the creation of the full CI/CD pipeline that incorporates mechanisms to support secure application
development and secure execution in production. Note that you do not have to implement the CI/CD
pipeline, but document all of the above through a report.

Table 1 Programming Language
Penultimate (i.e. second to last) digit of Student ID Programming Language
0, 5 C++
1, 6 C#
2, 7 Java
3, 8 Go
4, 9 Ruby
IMPORTANT: Each student must prepare the case study using the assigned programming language
based on the guidelines from Table 1 Programming Language. For example, if your student ID number
is XXXXXXXXXX, the penultimate i.e. second to last digit of your Student ID is 5, and therefore the
programming language assigned for your case study is C++.
IMPORTANT: This is a submission requirement. If the incorrect programming language is chosen, the
report will not be valid, and no marks will be provided.


You must conduct some independent research and include any relevant bibliography in the report.
Page 3 of 4
Deliverable

A 3-4 pages report (formatted using the IEEE Conference double-column template1) which documents
your case study taking into account the programming language the company uses to develop their web
applications (i.e. assigned to you based on Table 1). The report should include:
 Abstract – a XXXXXXXXXXword executive summary of the case study and its main findings
 Introduction – set the scene of the case study including its objectives
 A comprehensive plan for provisioning and configuration of web applications through a
full CI/CD pipeline, identifying suitable cloud-based services offered by Amazon Web
Services (AWS) and third-party tools used at each stage in the pipeline to support secure
application development and secure execution in production.
o For the security aspects you must identify and discuss the services/tools
available at least for the following stages:
 Security during building
 Security during testing
 Security during monitoring
 Include a diagram of the entire workflow highlighting the different stages in the pipeline;
the diagram should indicate where the different cloud-based services and third-party
tools are used to support the CI/CD pipeline. The diagram should be fully explained in
the text and have a meaningful caption.
 For each of the cloud-based services and third-party tools proposed in the different
stages of your CI/CD pipeline, provide a critical analysis of those cloud-based services
and tools, namely motivate your selection/choice of a particular cloud based
service/tool as compared to other tools available for that stage.
 Conclusions including findings/interpretations – what did you learn and find out?
 References – a complete list of academic works and/or online materials used in the
report/case study. References should be included as in-text citations using the IEEE
referencing style.
IMPORTANT:
 Remember that your report must not only be merely descriptive, but it must provide your
critical insights, that is, your own analysis and points of view.
 Your work must be original, so you must ensure that you do not choose a case study that already
exists. This would be considered plagiarism. Also, note that the diagram should be created by
you based on your case study.

1 https://www.ieee.org/conferences/publishing/templates.html
https://www.ieee.org/conferences/publishing/templates.html

Page 4 of 4
Assessment Criteria

The TABA will be assessed based on the assessment criteria shown in Table 2.

Table 2 Marking Criteria
The CI/CD pipeline; Diagram & Explanation 20%
Integration and discussion of cloud-based
services and/or third-party tools in the CI/CD
pipeline to support secure application
development and secure execution in
production
30%
Cloud-based services and third-party tools
critical analysis
30%
Conclusions and findings 10%
Comprehensiveness; Abstract; Introduction;
Structure & Bibliography (encompassing
relevant theory; quality of sources; correct
referencing is used)
10%
Answered 4 days AfterMay 07, 2021

Solution

Deepti Garg answered on May 10 2021
24 Votes

Abstract
This paper aims at preparing a case study for a company based in Ireland which intends to shift its primary web application from monolithic to micro-services-based architecture and...

Submit New Assignment

Copy and Paste Your Assignment Here