all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

GLITCH: an Intermediate-Representation-Based Security Analysis for Infrastructure as Code Scripts. (arXiv:2205.14371v1 [cs.CR])

Add to bookmarks
May 31, 2022, 1:20 a.m. | Nuno Saavedra, João F. Ferreira

cs.CR updates on arXiv.org arxiv.org

Infrastructure as Code (IaC) is the process of managing IT infrastructure via
programmable configuration files (also called IaC scripts). Like other software
artifacts, IaC scripts may contain security smells, which are coding patterns
that can result in security weaknesses. Automated analysis tools to detect
security smells in IaC scripts exist, but they focus on specific technologies
such as Puppet, Ansible, or Chef. This means that when the detection of a new
smell is implemented in one of the tools, it …

analysis code glitch infrastructure infrastructure as code representation scripts security security analysis

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

David and Goliath: An Empirical Evaluation of Attacks and Defenses for QNNs at the Deep … 15 hours ago | arxiv.org
applications arm arxiv attacks +18
How to Use Quantum Indistinguishability Obfuscation 15 hours ago | arxiv.org
arxiv class copy cs.cr +6
Privately Aligning Language Models with Reinforcement Learning 15 hours ago | arxiv.org
alignment arxiv chatgpt cs.cr +13
Numeric Truncation Security Predicate 15 hours ago | arxiv.org
arxiv bits conversion cs.cr +11
Causal Discovery Under Local Privacy 15 hours ago | arxiv.org
application arxiv consumers cs.ai +19
Investigating Threats Posed by SMS Origin Spoofing to IoT Devices 15 hours ago | arxiv.org
arxiv communication cs.cr devices +18
Impact of Architectural Modifications on Deep Learning Adversarial Robustness 15 hours ago | arxiv.org
adoption advancements adversarial applications +23
Tokenization of Real Estate Assets Using Blockchain 15 hours ago | arxiv.org
area arxiv assets banking +20
A Survey on Privacy-Preserving Caching at Network Edge: Classification, Solutions, and Challenges 15 hours ago | arxiv.org
arxiv caching challenges classification +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Consultant infrastructure sécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Information Security Operations Officer

@ International Labour Organization | Geneva, CH, 1200
View on infosec-jobs.com

PMO Cybersécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Third Party Risk Management - Consultant

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Consultant Cyber Sécurité H/F - Strasbourg

@ Hifield | Strasbourg, France
View on infosec-jobs.com
View more jobs