{"title":"使用bluefix管理云原生环境中的漏洞","authors":"Jin Xiao, J. Rofrano","doi":"10.23919/INM.2017.7987368","DOIUrl":null,"url":null,"abstract":"Bluefix is a solution we created for managing the vulnerabilities in a cloud native world where clients operate their own DevOp pipelines and design the same management function and assurance of that of traditional managed services. We show that the challenges imposed by container cloud and DevOp culture requires significant departure of service management design. As a case study, we examined how vulnerabilities are managed in the pre-cloud native vs. post-cloud native world, identified control points in both DevOp pipeline as well as cloud service fabric as to enable a scalable and automated vulnerability management solution for IBM container cloud. Our journey and exploration in this area has only just begun, as the lessons learned and many remaining challenges hold much promise and opportunities.","PeriodicalId":119633,"journal":{"name":"2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM)","volume":"115 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-05-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Managing vulnerabilities in a cloud native world with bluefix\",\"authors\":\"Jin Xiao, J. Rofrano\",\"doi\":\"10.23919/INM.2017.7987368\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Bluefix is a solution we created for managing the vulnerabilities in a cloud native world where clients operate their own DevOp pipelines and design the same management function and assurance of that of traditional managed services. We show that the challenges imposed by container cloud and DevOp culture requires significant departure of service management design. As a case study, we examined how vulnerabilities are managed in the pre-cloud native vs. post-cloud native world, identified control points in both DevOp pipeline as well as cloud service fabric as to enable a scalable and automated vulnerability management solution for IBM container cloud. Our journey and exploration in this area has only just begun, as the lessons learned and many remaining challenges hold much promise and opportunities.\",\"PeriodicalId\":119633,\"journal\":{\"name\":\"2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM)\",\"volume\":\"115 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-05-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.23919/INM.2017.7987368\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23919/INM.2017.7987368","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Managing vulnerabilities in a cloud native world with bluefix
Bluefix is a solution we created for managing the vulnerabilities in a cloud native world where clients operate their own DevOp pipelines and design the same management function and assurance of that of traditional managed services. We show that the challenges imposed by container cloud and DevOp culture requires significant departure of service management design. As a case study, we examined how vulnerabilities are managed in the pre-cloud native vs. post-cloud native world, identified control points in both DevOp pipeline as well as cloud service fabric as to enable a scalable and automated vulnerability management solution for IBM container cloud. Our journey and exploration in this area has only just begun, as the lessons learned and many remaining challenges hold much promise and opportunities.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
