Litcius/Paper detail

Mitigating security attacks in kubernetes manifests for security best practices violation

Shazibul Islam Shamim

202121 citationsDOI

Abstract

Kubernetes is an open-source software system that helps practitioners in automatically deploying, scaling, and managing containerized applications. Information technology (IT) organizations, such as IBM, Spotify, and Capital One, use Kubernetes to manage their containers and reported benefits in the deployment process. However, recent security breaches and survey results among practitioners suggest that Kubernetes deployment can be vulnerable to attacks due to misconfiguration and not following security best practices. This research explores how malicious users can perform potential security exploits from the violations of Kubernetes security best practices. We explore how attacks can be conducted such as denial of service attacks against one of the security best practices violations in Kubernetes manifests. In addition, we are exploring potential exploits in the Kubernetes cluster to propose mitigation strategies to secure the Kubernetes cluster.

Topics & Concepts

ExploitComputer securityComputer scienceSoftware deploymentSecurity serviceDenial-of-service attackSoftware security assuranceSecurity information and event managementBest practiceSecurity through obscurityIBMSecurity bugSecurity testingCloud computing securityInternet privacyInformation securityCloud computingThe InternetWorld Wide WebOperating systemEconomicsNanotechnologyMaterials scienceManagementInformation and Cyber SecurityNetwork Security and Intrusion DetectionSoftware System Performance and Reliability
Mitigating security attacks in kubernetes manifests for security best practices violation | Litcius