Portal de Programas de Pós-Graduação (UFLA)

SIGAA - Sistema Integrado de Gestão de Atividades Acadêmicas

Ir para o Conteúdo Principal 1
Início do Menu 2

PROGRAMA DE PÓS-GRADUAÇÃO EM CIÊNCIA DA COMPUTAÇÃO

Telefone/Ramal: (35) 3829-5195/5195
E-mail: posgrad_si.icet@ufla.br Site Antigo: http://prpg.ufla.br/alternativo/computacao

Notícias

Banca de DEFESA: VITOR ORIEL DE CASTRO NUNES BORGES

Uma banca de DEFESA de MESTRADO foi cadastrada pelo programa.
DISCENTE: VITOR ORIEL DE CASTRO NUNES BORGES
DATA: 16/12/2024
HORA: 13:00
LOCAL: Sala de Videoconferência - DCC/UFLA
TÍTULO:

SMELLY KUBE: AN APPLICATION PROGRAMMING INTERFACE (API) TO DETECT SECURITY SMELLS IN KUBERNETES MANIFESTS

PALAVRAS-CHAVES:

Security, Security smells, Misconfiguration, Kubernetes, Kubernetes manifests

PÁGINAS: 96
GRANDE ÁREA: Ciências Exatas e da Terra
ÁREA: Ciência da Computação
SUBÁREA: Sistemas de Computação
ESPECIALIDADE: Teleinformática
RESUMO:

The adoption of microservices-based architectures has become increasingly common, with Kubernetes standing out as a leading platform for managing and orchestrating these services due to its scalability and ability to handle complex environments. However, security risks often arise when Kubernetes manifests are not carefully designed. To address this issue, the tool Smelly Kube (SK) was developed, following a client/server architecture: i) Client: a Visual Studio Code plugin that sends Kubernetes manifests to a Golang-based server via HTTP requests, providing developers with a straightforward interface for performing security checks directly in their development environment, and ii) Server: a Golang application that processes these manifests to detect and analyze security smells. This architecture ensures that developers can easily integrate security checks into their workflows. To validate the tool's effectiveness, an experiment was conducted, applying SK to 2,107 Kubernetes applications after sanitizing 5,055 Cloud Native packages sourced from Artifact Hub. Another dataset of 183,225 Kubernetes manifests was provided from GitHub. The results demonstrated that SK successfully detected a wide range of security smells, providing valuable insights for developers and helping to improve the overall security of Kubernetes-based microservices.

MEMBROS DA BANCA:
Interno - RAFAEL SERAPILHA DURELLI (Membro)
Externo ao Programa - NEUMAR COSTA MALHEIROS - ICTIN (Membro)
Presidente - LUIZ HENRIQUE ANDRADE CORREIA (Membro)
Externo à Instituição - IVO AUGUSTO ANDRADE ROCHA CALADO - IFAL (Suplente)
Externo à Instituição - HUDSON SILVA BORGES - UFMS (Membro)
Interno - AHMED ALI ABDALLA ESMIN (Suplente)

Notícia cadastrada em: 02/12/2024 11:25

SIGAA | DGTI - Diretoria de Gestão de Tecnologia da Informação - Contatos (abre nova janela): https://ufla.br/contato | © UFLA | appserver1.srv1inst1 04/07/2025 11:40