Method and system for automatically deploying IAST agent in k8s

A technology of automatic deployment and clustering, which can be used in program control design, instrumentation, electrical digital data processing, etc., and can solve the problem of high cost

Pending Publication Date: 2021-11-30
杭州默安科技有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

At present, the industry basically adopts the method of modifying the original image to deploy IAST agent in k8s, and the cost is still high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for automatically deploying IAST agent in k8s
  • Method and system for automatically deploying IAST agent in k8s

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0023] The following description serves to disclose the present invention to enable those skilled in the art to carry out the present invention. The preferred embodiments described below are only examples, and those skilled in the art can devise other obvious variations. The basic principles of the present invention defined in the following description can be applied to other embodiments, variations, improvements, equivalents and other technical solutions without departing from the spirit and scope of the present invention.

[0024] It can be understood that the term "a" should be understood as "at least one" or "one or more", that is, in one embodiment, the number of an element can be one, while in another embodiment, the number of the element The quantity can be multiple, and the term "a" cannot be understood as a limitation on the quantity.

[0025] Please combine Figure 1-Figure 2 , the present invention discloses a method and system for automatic deployment of an IAST ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a system for automatically deploying an IAST agent in k8s. The method comprises the following steps that a k8s muting webhook program capable of automatically deploying the IAST agent is established; an admission webhook function is started in the k8s cluster, and the program is installed in the k8s cluster; a container is created in the k8s cluster, and IAST agent automatic deployment condition parameters are configured; if the configured IAST agent automatic deployment condition parameters meet the deployment requirements, an IAST agent automatic deployment engine is called according to the program; and the IAST agent automatic deployment engine deploys an IAST agent in a container created by the k8s cluster, and the IAST agent is normally started. According to the method and the system, a patch action is executed in k8s, an environment variable of the k8s is modified and an IAST directory is mounted through the patch action, and when a POD in the k8s runs, the patch action can be configured to modify the environment variable and mount the IAST directory, so that rapid and automatic IAST agent deployment in a k8s cloud native environment is realized.

Description

technical field [0001] The invention relates to the technical field of software vulnerability detection, in particular to a method and system for automatically deploying an IAST agent in k8s. Background technique [0002] IAST (Interactive Application Security Testing) is a new application security testing technology that has been widely accepted in recent years. Compared with DAST (Dynamic Application Security Testing, black box) and SAST (Static Application Security Testing, white box), it has low false positives , The advantage of low false positives. However, it needs to deploy an agent on the service where the application is located. Especially in the k8s cloud native environment, it is necessary to deploy an agent on each node. For many users, this is very troublesome and costly. great resistance. At present, the industry basically adopts the method of modifying the original image to deploy the IAST agent in k8s, and the cost is still high. Contents of the inventio...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F9/455
CPCG06F9/45558G06F2009/45591G06F2009/45575G06F2009/45562G06F2009/4557
Inventor 陈路
Owner 杭州默安科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap