Online Platform for Interactive Tutorials: Cloud-Native Security
Perustieteiden korkeakoulu | Master's thesis
Unless otherwise stated, all rights belong to the author. You may download, display and print this publication for Your own personal use. Commercial use is prohibited.
Security and Cloud Computing
Master’s Programme in Security and Cloud Computing (SECCLO)
AbstractComputer science students have to develop hands-on experience with a wide array of programming languages, software development tools, and emerging technologies to keep up with the fast-evolving field. However, learning new technologies can be a daunting experience when students are required to setup new environments or perform many downloads and tedious configurations just to get started. This thesis introduces a novel online learning platform that solves this problem by providing students access to virtual environments that come prepackaged with the tools and dependencies required for a lesson. These environments are provided using Docker containers that students can directly access through a web-based terminal. This allows students to follow the instructions of labs, and perform the required actions in the terminal. Moreover, the platform is designed for higher education institutions and thus provides mechanisms to track student progress in labs, which can be used to offer graded assignments. Google Kubernetes Engine is used to deploy both the platform's application and the student's container-based virtual environments. Granting users access to these containers introduces security risks as malicious users can mount attacks such as network-based intrusion, denial of service, or privilege escalation against the platform or other users. To prevent these attacks, several security policies are enforced to secure the different components of the cloud-native application. A comprehensive overview of the security configuration of the platform and recommendations for future improvements is provided in this work.
SupervisorDi Francesco, Mario
Thesis advisorDi Francesco, Mario
docker, kubernetes, cloud-native security, online learning, interactive learning