I successfully presented and defended my Master’s Thesis work titled “Delving Into DevOps: Examining the Security Posture of State-of-Art Service Mesh Tools”. This work encompassed a significant portion of my prior research while here at the University of Kansas, as well as some ongoing research within the area of DevOps tools and microservice architectures. I was very lucky to have Dr. Alex Bardas serving as my Thesis Committee Chair, as well as Dr. Drew Davidson, and Dr. Fengjun Li serving as committee members.
I presented my work titled “MisMesh: Security Issues and Challenges in Service Meshes” as a part of the remotely-held conference proceedings of SecureComm 2020.
Yousif Dafalla and I’s work, in conjunction with the the power systems group at Kansas State University, headed by Dr. Hongyu Wu was selected for publication in IEEE Access and is available HERE. This work involved the study of consumer-grade solar panel arrays that can be deployed within residential homes and connected to an Internet connection. We studied how the cyber and physical sides of these devices meet and the potential vulnerabilities due to this design.
My work studying the security posture of state-of-art service mesh tools was selected for publication in SecureComm 2020 as a short paper and is available HERE. This work involved the creation of a testbed environment to exercise service mesh functionality and attempt to find weaknesses/shortcomings in the tools. Additionally, we studied both the best-case defender, where security is fully enabled and utilized correctly, and the default configuration of the tools which does not include many protections by default. Extended results and experimentation as a part of this work are also available via arXiv HERE.
I presented the work that Ron Andrews and I collaborated upon titled “Measuring the Prevalence of the Password Authentication Vulnerability in SSH” as a part of the remotely-held conference proceedings of IEEE ICC 2020.