| KEYWORD |
Cloud security
keywords CLOUD COMPUTING, CYBERSECURITY, SECURITY, MODELS, ANALYSIS TOOLS
Reference persons DANIELE BRINGHENTI, RICCARDO SISTO, FULVIO VALENZA
Research Groups DAUIN - GR-03 - COMPUTER NETWORKS GROUP - NETGROUP
Description The growing complexity of cloud and edge systems requires robust mechanisms to provide security.
On the one hand, managing access control policies within dynamic frameworks such as Kubernetes (K8S) is a complex task due to the evolving nature of access models, including Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC). Automation, therefore, plays a vital role in ensuring that access control policies remain consistent, scalable, and resistant to misconfigurations or security breaches.
On the other hand, the novel cloud continuum paradigm, where resources span across cloud, edge, and liquid computing domains, raises new challenges in border protection and isolation. In such interconnected and multi-domain environments, ensuring the protection of resource borders and implementing effective isolation primitives is critical.
At the Netgroup at the Politecnico di Torino, we are planning to work in this research field in the possible directions:
• defining intent languages to support multiple access control models for K8S;
• investigating smart algorithms for formal verification and configuration of K8S access control policies;
• Implement isolation primitives for liquid computing and multi-domain environments (e.g., service mesh).
Required skills Computer Networks, Cybersecurity, Java
Deadline 19/11/2025
PROPONI LA TUA CANDIDATURA