Download to read offline
Uploaded byPIACERE
PIACERE project at EClipse Con 2023
The document discusses the PIACERE project, which has received funding from the European Union's Horizon 2020 program. The project aims to develop a DevSecOps framework for securely developing infrastructure-as-code using tools integrated into IDEs. A proof-of-concept version is already available. The framework will use the Eclipse EMF to develop a DevSecOps Modeling Language to model infrastructure and support security and performance settings across multiple layers from the application to infrastructure.
![[EMC] Source Code Protection](https://cdn.slidesharecdn.com/ss_thumbnails/source-code-protection-emc-paper-130524110401-phpapp02-thumbnail.jpg?width=640&height=640&fit=bounds)
![[EMC] Source Code Protection](https://cdn.slidesharecdn.com/ss_thumbnails/source-code-protection-emc-slides-130524110452-phpapp01-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Full-Stack Development] The Modern Stack: Building Web & AI Appli...](https://cdn.slidesharecdn.com/ss_thumbnails/fs-themodernstackbuildingwebaiapplicationswithserverless-251124030844-388cf04f-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Mobile Development] Mobile Engineer and Software Engineer: Are we...](https://cdn.slidesharecdn.com/ss_thumbnails/md-mobileengineerandsoftwareengineerarewestillrelevantsidiqpermana-251127010650-55224ef1-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Artificial Intelligence] AI for the Underdogs: Innovation for Sma...](https://cdn.slidesharecdn.com/ss_thumbnails/ai-aifortheunderdogsinnovationforsmallbusinesses-251124030839-72a599a4-thumbnail.jpg?width=640&height=640&fit=bounds)
![Support, Monitoring, Continuous Improvement & Scaling Agentic Automation [3/3]](https://cdn.slidesharecdn.com/ss_thumbnails/agenticcommunityseries-day3-cfd-251120170304-ddef8112-thumbnail.jpg?width=640&height=640&fit=bounds)
PIACERE project at EClipse Con 2023
- 1. This project hasreceived funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No. 101000162. PIACERE: Making secure IaC code development easier through ECLIPSE EMF Gorka Benguria (Tecnalia) Eclipse Community Day Talk, 16th of October
- 2. 2 20/10/2023 GA 101000162 Vision:DevSecOps framework for the development, deployment and operation of trustworthy infrastructure-as-code. Goal: Framework with tools integrated in the IDE. Status: PoC version already available! PIACERE Project
- 3. 3 20/10/2023 GA 101000162 PIACEREProject DevSecOps Approach
- 4.
- 5. 5 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 6. 6 20/10/2023 GA 101000162 EclipseEMF role DOML: DevSecOps Modeling Language that is developed by using ECLIPSE EMF: • Multiple layers • Aplication layer • Abstract infrastructure layer • Supports realtime security and performance settings • Concrete infrastructure layer • Optimization layer
- 7.
- 8. 8 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 9.
- 10. 10 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 11.
- 12.
- 13. 13 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 14.
- 15. 15 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 16.
- 17. 17 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 18.
- 19. 19 20/10/2023 GA 101000162 DOML – domain specific language Model checker IaC Optim. Platform + catalogue IaC Code Generator (Terraform, Ansible, …) IaC security inspector Component security inspector PIACERE runtime controller Canary sandbox environment IaC Execution manager (Security) monitoring Self-learning Self-healing
- 20.
- 21.