窃听pod和节点- Kubernetes中的合法拦截

Electron. Commun. Eur. Assoc. Softw. Sci. Technol. Pub Date : 2021-09-08 DOI:10.14279/TUJ.ECEASST.80.1148

Daniel Spiekermann, Jörg Keller

{"title":"窃听pod和节点- Kubernetes中的合法拦截","authors":"Daniel Spiekermann, Jörg Keller","doi":"10.14279/TUJ.ECEASST.80.1148","DOIUrl":null,"url":null,"abstract":"Nowadays IT infrastructures have to supply a flexible and dynamic platform for the provision of modern applications. Kubernetes is one of the most notable environments for the provisioning of small and independently running microservices used by modern applications. With Kubernetes, these microservices can be developed, deployed, updated and scaled in a continuous process. This flexibility is a huge advantage to older and more static environments. But whereas these old infrastructures lack in dynamics, necessary digital investigation are easier to accomplish. This need is still existing in modern environments, hence this paper presents a novel approach for the lawful interception of network packets in a Kubernetes cluster. The approach improves the dynamic capture processes by monitoring involved devices assigned to a defined application without hampering the environment or capturing unwanted network packets. Keywords: Kubernetes, network","PeriodicalId":115235,"journal":{"name":"Electron. Commun. Eur. Assoc. Softw. Sci. Technol.","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-09-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Wiretapping Pods and Nodes - Lawful Interception in Kubernetes\",\"authors\":\"Daniel Spiekermann, Jörg Keller\",\"doi\":\"10.14279/TUJ.ECEASST.80.1148\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Nowadays IT infrastructures have to supply a flexible and dynamic platform for the provision of modern applications. Kubernetes is one of the most notable environments for the provisioning of small and independently running microservices used by modern applications. With Kubernetes, these microservices can be developed, deployed, updated and scaled in a continuous process. This flexibility is a huge advantage to older and more static environments. But whereas these old infrastructures lack in dynamics, necessary digital investigation are easier to accomplish. This need is still existing in modern environments, hence this paper presents a novel approach for the lawful interception of network packets in a Kubernetes cluster. The approach improves the dynamic capture processes by monitoring involved devices assigned to a defined application without hampering the environment or capturing unwanted network packets. Keywords: Kubernetes, network\",\"PeriodicalId\":115235,\"journal\":{\"name\":\"Electron. Commun. Eur. Assoc. Softw. Sci. Technol.\",\"volume\":\"5 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-09-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Electron. Commun. Eur. Assoc. Softw. Sci. Technol.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.14279/TUJ.ECEASST.80.1148\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Electron. Commun. Eur. Assoc. Softw. Sci. Technol.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.14279/TUJ.ECEASST.80.1148","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

如今，IT基础设施必须为提供现代应用程序提供灵活和动态的平台。Kubernetes是最著名的环境之一，用于为现代应用程序提供小型且独立运行的微服务。使用Kubernetes，这些微服务可以在一个连续的过程中开发、部署、更新和扩展。这种灵活性对于较老的静态环境来说是一个巨大的优势。但是，尽管这些旧的基础设施缺乏活力，必要的数字调查更容易完成。这种需求在现代环境中仍然存在，因此本文提出了一种在Kubernetes集群中合法截取网络数据包的新方法。该方法通过监视分配给已定义应用程序的相关设备，而不会妨碍环境或捕获不需要的网络数据包，从而改进了动态捕获过程。关键词:Kubernetes，网络

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Wiretapping Pods and Nodes - Lawful Interception in Kubernetes

Nowadays IT infrastructures have to supply a flexible and dynamic platform for the provision of modern applications. Kubernetes is one of the most notable environments for the provisioning of small and independently running microservices used by modern applications. With Kubernetes, these microservices can be developed, deployed, updated and scaled in a continuous process. This flexibility is a huge advantage to older and more static environments. But whereas these old infrastructures lack in dynamics, necessary digital investigation are easier to accomplish. This need is still existing in modern environments, hence this paper presents a novel approach for the lawful interception of network packets in a Kubernetes cluster. The approach improves the dynamic capture processes by monitoring involved devices assigned to a defined application without hampering the environment or capturing unwanted network packets. Keywords: Kubernetes, network

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Electron. Commun. Eur. Assoc. Softw. Sci. Technol.

自引率

0.00%

发文量

期刊最新文献

Information Management for Multi-Agent Systems Towards SCION-enabled IXPs: The SCION Peering Coordinator Demonstration: A cloud-control system equipped with intrusion detection and mitigation Demo: Traffic Splitting for Tor - A Defense against Fingerprinting Attacks Preface and Table of Contents