PORTALE DELLA DIDATTICA

Ricerca CERCA
  KEYWORD

Zero-Trust Architectures

azienda Thesis in external company    


keywords CYBERSECURITY, KUBERNETES, SERVICE MESH

Reference persons RICCARDO SISTO

Research Groups COMPUTER NETWORKS GROUP - NETGROUP, DAUIN - GR-03 - COMPUTER NETWORKS GROUP - NETGROUP, GR-03 - COMPUTER NETWORKS GROUP - NETGROUP, NETGROUP

Thesis type THEORETICAL/EXPERIMENTAL

Description With the diffusion of the new microservices-based development paradigm, the new need of securing microservices in their ecosystems arises, not only with respect to the incoming traffic (load balancing, rate-limiting, authentication and authorization policies), but also internally (intra-pod security). As the complexity of business logic entails multi-team management of microservices, it is necessary to segregate traffic in between specific microservices by means of proper security logic. A possible solution is the adoption of a Service Mesh, a software layer that enables security and observability logics (traffic encryption between certain services, route definition, etc.) in a cluster of microservices. The goal of the thesis is to study how this concept and a zero-trust architecture can be implemented by means of Istio, and highlight pros and cons when this concept is introduced into an industrial context.

Required skills Programming, scripting, networking


Deadline 01/03/2022      PROPONI LA TUA CANDIDATURA




© Politecnico di Torino
Corso Duca degli Abruzzi, 24 - 10129 Torino, ITALY
Contatti