NORMA eResearch @NCI Library

Improving Probes and checks in Kube-Hunter to evaluate and repair Security Vulnerabilities in the Kubernetes manifest file

-, Tenzin Tsephel (2023) Improving Probes and checks in Kube-Hunter to evaluate and repair Security Vulnerabilities in the Kubernetes manifest file. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration manual]
Preview
PDF (Configuration manual)
Download (4MB) | Preview

Abstract

This work is to solve the common security flaws discovered in Kubernetes manifest files that can be used to alter or obtain unauthorized access to objects in the Kubernetes cluster adept at identifying vulnerabilities at the cluster level, the Kube-Hunter program has limits when it comes to protecting it. In order to improve Kube-Hunter and make it more efficient at identifying and fixing file vulnerabilities, this work adds new code to its probes and checks. The algorithms for Role-Based Access Control (RBAC) Policy Misconfiguration Check be used to detect and fix improper container communication and excessively permissive access permissions, respectively. By delivering a more thorough security assessment of Kubernetes settings and encouraging safer Kubernetes usage in businesses, this research covers a better Kube-Hunter. Title: Does the Role-Based Access Control (RBAC) Policy Misconfiguration Check and Network Policy Misconfiguration Check algorithm enhances the Kube-hunter tool to detect and remediate security vulnerabilities?

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Sahni, Vikas
UNSPECIFIED
Uncontrolled Keywords: Kube-hunter; Role Base Access Control(RBAC); Kubernetes; Docker; Python
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Cloud computing
Q Science > QA Mathematics > Algebra > Algorithms > Computer algorithms
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Divisions: School of Computing > Master of Science in Cloud Computing
Depositing User: Tamara Malone
Date Deposited: 10 Aug 2024 10:15
Last Modified: 10 Aug 2024 10:15
URI: https://norma.ncirl.ie/id/eprint/7039

Actions (login required)

View Item View Item