SARIK: A Framework Proposal for Enhancing Security in Kubernetes Through Network Policies
Kubernetes, Network Policies, SARIK Framework e Security
The evolution of container and orchestration technologies, especially Kubernetes, has brought numerous advantages to deploying applications in distributed environments, but it has also presented significant challenges in terms of security. This dissertation introduces the SARIK framework (Security Automated Rules for Iptables in Kubernetes), a solution designed to enhance security in Kubernetes environments. SARIK addresses vulnerabilities associated with network traffic in Kubernetes clusters by implementing network policies efficiently and automatically. This study not only explores the limitations of traditional security approaches in Kubernetes but also empirically analyzes the effectiveness of SARIK, using metrics such as latency, response rate, and transmission rate. The results confirm that SARIK does not compromise application performance while strengthening security. In addition, we discuss practical implications, future challenges, and best practices for security in Kubernetes environments. The work also highlights the influence of the choice of the operating system and cluster configuration on the effectiveness of security policies. In summary, SARIK represents a significant advancement in Kubernetes security, offering a practical and automated approach to mitigating risks and enhancing cluster protection in an increasingly complex and vulnerable technological landscape.