Análisis de seguridad para despliegues de plataformas educativas tecnológicas moodle en docker swarm desarrolladas por la empresa TRASCEND-IT
In today's digital era, technological educational platforms play a vital role in facilitating distance learning and enhancing the educational experience of students. Trascend-IT is a leading technology consulting company located in the vibrant city of Quito, Ecuador. With a focus focused on the...
Պահպանված է:
| Հիմնական հեղինակ: | |
|---|---|
| Ձևաչափ: | bachelorThesis |
| Հրապարակվել է: |
2024
|
| Խորագրեր: | |
| Առցանց հասանելիություն: | https://repositorio.puce.edu.ec/handle/123456789/44575 |
| Ցուցիչներ: |
Ավելացրեք ցուցիչ
Չկան պիտակներ, Եղեք առաջինը, ով նշում է այս գրառումը!
|
Ավելացրեք ցուցիչ | Ամփոփում: | In today's digital era, technological educational platforms play a vital role in facilitating distance learning and enhancing the educational experience of students. Trascend-IT is a leading technology consulting company located in the vibrant city of Quito, Ecuador. With a focus focused on the educational field, this innovative company has specialized in providing personalized technological solutions based on the popular Moodle platform. Through its deep experience and knowledge, Trascend-IT has managed to position itself as a reliable strategic partner for educational institutions across the country. Their highly trained team of technology experts and instructors work closely with each client to understand their unique needs and develop tailored solutions that optimize their online teaching and learning processes. From the implementation and customization of Moodle platforms to the integration of cutting-edge tools. However, in its production area, the company has not yet implemented educational platforms based on Docker Swarm due to the lack of a comprehensive analysis of security practices and risk mitigation strategies. With the aim of addressing this gap, this research focuses on analyzing the vulnerabilities present in the Moodle technological educational platforms deployed on a Docker Swarm architecture for Trascend-IT. The methodology used is based on the SonarQube tool, complemented by the security standards CVSS (Common Vulnerability Scoring System) and CVE (Common Vulnerabilities and Exposures). These standards provided a systematic, standardized approach to assessing and addressing security vulnerabilities, leveraging industry resources and best practices. CVSS scores were used to prioritize vulnerabilities identified by SonarQube and assess their criticality, allowing mitigation efforts to be focused on the most significant risks. By using CVE identifiers in the investigation, we were able to correlate detected vulnerabilities with the most recent and accurate information available, making it easier to understand their nature, potential impact, and mitigation measures recommended by software vendors. |
|---|