Mitigating Security Attacks in Kubernetes Manifests for Security Best Practices Violation
Thu 26 Aug 2021 00:40 - 00:50 - Student Research Competition
Kubernetes is an open-source software system that helps practitioners in automatically deploying, scaling, and managing containerized applications. Information technology (IT) organizations, such as IBM, Spotify, and Capital One, use Kubernetes to manage their containers and reported benefits in the deployment process. However, recent security breaches and survey results among practitioners suggest that Kubernetes deployment can be vulnerable to attacks due to misconfiguration and not following security best practices. This research explores how malicious users can perform potential security exploits from the violations of Kubernetes security best practices. We explore how attacks can be conducted such as denial of service attacks against one of the security best practices violations in Kubernetes manifests. In addition, we are exploring potential exploits in the Kubernetes cluster to propose mitigation strategies to secure the Kubernetes cluster.
Wed 25 AugDisplayed time zone: Athens change
12:00 - 13:00 | |||
12:00 10mTalk | Overcoming Metric Diversity in Meta-analysis for Software Engineering: Proposed Approach and a Case Study on Its Usage on the Effects of Software Reuse Student Research Competition Kirill Daniakin Innopolis University DOI | ||
12:10 10mTalk | A General Approach to Modeling Java Framework Behaviors Student Research Competition Linghui Luo Paderborn University, Germany DOI | ||
12:20 10mTalk | Automated Generation of Realistic Test Inputs for Web APIs Student Research Competition Juan C. Alonso University of Seville DOI | ||
12:30 10mTalk | Discovering Repetitive Code Changes in ML Systems Student Research Competition Malinda Dilhara University of Colorado at Boulder DOI | ||
12:40 10mTalk | Mitigating Security Attacks in Kubernetes Manifests for Security Best Practices Violation Student Research Competition Shazibul Islam Shamim Tennessee Tech University DOI | ||
Thu 26 AugDisplayed time zone: Athens change
00:00 - 01:00 | |||
00:00 10mTalk | Overcoming Metric Diversity in Meta-analysis for Software Engineering: Proposed Approach and a Case Study on Its Usage on the Effects of Software Reuse Student Research Competition Kirill Daniakin Innopolis University DOI | ||
00:10 10mTalk | A General Approach to Modeling Java Framework Behaviors Student Research Competition Linghui Luo Paderborn University, Germany DOI | ||
00:20 10mTalk | Automated Generation of Realistic Test Inputs for Web APIs Student Research Competition Juan C. Alonso University of Seville DOI | ||
00:30 10mTalk | Discovering Repetitive Code Changes in ML Systems Student Research Competition Malinda Dilhara University of Colorado at Boulder DOI | ||
00:40 10mTalk | Mitigating Security Attacks in Kubernetes Manifests for Security Best Practices Violation Student Research Competition Shazibul Islam Shamim Tennessee Tech University DOI | ||
