security-threat-model-analysis-and-protection-practice-in-edge-computing-scenarios-yi-sui-dou-zhao-pencezha-mao-nfrehuan-yue-bao-huawei-huan-wei-harmonycloud.pptx

1、Security Threat Model Analysis and Protection Practice in Edge Computing Scenarios,魏欢Huan Wei,HarmonyCloud鲍玥Yue Bao,Huawei Cloud,About us,Yue Bao-KubeEdge Maintainer-Huawei Cloud Software Engineer-Github:Shelley-BaoYue,Huan Wei-CNCF Ambassador-KubeEdge TSC-Senior Director,HarmonyCloud-Github:huanwei

2、,Edge Computing,The KubeEdge Project,Edge Computing scenarios oriented,designed for edge-cloud collaborationConsistent experience of Applications,Resources,Data,Devices,etc.Collaboration between cloud&edge,The first Cloud Native Edge Cloud Computing OSS ProjectOpen Governance,connecting Cloud Native

3、 and Edge Computing Ecosystem7,600+stars,2,100+forks on GitHub1500+contributors(350+code committers)from 100+organizations,KubeEdge Architecture,Seamless Cloud-Edge CoordinationEdge AutonomyLow Resource ReadinessSimplified Device CommunicationOpen Ecosystem,Security Challenge,Security challenges in

4、cloud-native edge computing span across devices,networks,data,applications,operations,identity management,and compliance,requiring a comprehensive security approach to ensure the overall system security.Edge Devices:Often located in uncontrolled environments,making them vulnerable to physical attack

5、s and unauthorized access.Network Security:Networks on the edge and between cloud and edge are susceptible to various network attacks such as DDoS and data theft.Data Security:Edge devices often process sensitive and private data,so ensuring the confidentiality,integrity,and availability of this dat

6、a is essential.Application Security:Cloud-native applications deployed at the edge may have vulnerabilities like injection flaws and cross-site scripting,requiring thorough application security testing and remediation.Operational Security:Edge environments are complex to manage,necessitating automat