Smart2zero: Mr. Kuehlmann, security is a big issue for developers of software – in particular embedded software. At the same time, in the development process methods like agile development and DevOps are increasingly being established as standard. Is there a connection between DevOps and security?
Andreas Kuehlmann: Absolutely! First of all, let’s step back for a moment. What DevOps is all about, is essentially automating the entire development, testing and delivery process in software development. This is kind of if you take agile (development) to the next step; agile was really coming up 15 years ago, where people started reorganizing the software development – instead of doing in one large chunk over a long period of time, chopping it off into small pieces, and these small pieces then individually delivered. DevOps is now the next step where you automate the process. The interesting part about DevOps is it’s actually more organizational issue than actually a software development issue itself. We see this now coming up in the automotive industry. We know this from several OEMs that they move away from the traditional V model, and are really getting into agile and actually utilize DevOps in that process.
Smart2zero: Is there also a connection between Open Source and security? I’m asking this, because everybody considers Opens Source as secure and safe, just because it is open and everybody believes that it secure because it has been tested all over again by the community.