| KEYWORD |
Area Ingegneria
Cloud security
Parole chiave CLOUD COMPUTING, CYBERSECURITY, SECURITY, MODELS, ANALYSIS TOOLS
Riferimenti DANIELE BRINGHENTI, RICCARDO SISTO, FULVIO VALENZA
Gruppi di ricerca DAUIN - GR-03 - COMPUTER NETWORKS GROUP - NETGROUP
Descrizione The growing complexity of cloud and edge systems requires robust mechanisms to provide security.
On the one hand, managing access control policies within dynamic frameworks such as Kubernetes (K8S) is a complex task due to the evolving nature of access models, including Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC). Automation, therefore, plays a vital role in ensuring that access control policies remain consistent, scalable, and resistant to misconfigurations or security breaches.
On the other hand, the novel cloud continuum paradigm, where resources span across cloud, edge, and liquid computing domains, raises new challenges in border protection and isolation. In such interconnected and multi-domain environments, ensuring the protection of resource borders and implementing effective isolation primitives is critical.
At the Netgroup at the Politecnico di Torino, we are planning to work in this research field in the possible directions:
• defining intent languages to support multiple access control models for K8S;
• investigating smart algorithms for formal verification and configuration of K8S access control policies;
• Implement isolation primitives for liquid computing and multi-domain environments (e.g., service mesh).
Conoscenze richieste Computer Networks, Cybersecurity, Java
Scadenza validita proposta 19/11/2025
PROPONI LA TUA CANDIDATURA