/xAppSec

A commandline tool to perform the security check to xApp and set up EFK stack for monitoring xApp's behavior.

Primary LanguagePythonGNU General Public License v3.0GPL-3.0

xAppSec

A command tool to perform the security check to xApp and set up EFK stack for monitoring xApp's behavior.

Environment.

✅ Working well in Near-RT RIC Cluster [E Release]
✅ Ubuntu 18.04 LTS

Funcitonality

xAppSec Usage:

./xAppSec.sh [OPTIONS]

[OPTIONS]:image
 -i: initialize the envrionment.
 -n: normal mode, do xApp image scanning,onboarding and installing the xApp.
 -k: Setup Kibana Index Pattern.
 -h: Help.
  • Setup Environment for xApp image scanning, onboarding and deploying.
  • Deploy EFK Stack for monitoring xApp's behavior.
  • Automatically Setup Kibana Index Pattern.

Initialization

The initialization includes the following steps:

  • Install VeinMind SDK and related dependencies.
  • Clone O-RAN xapp_onboarder repo.
  • Build custom fluentd daemonset dockerfile.
  • Deploy EFK K8S objects.
  • Run helm server locally.

Image Scan

Run the following script for scanning xApp's image.

  • ImageRegistryCheck.py
  • backdoor_scan.py
  • image_history.py

EFK Monitoring

Capture xApp's Pod log and present its behavior.

  • Create Index Pattern automatically.

Architecture

image

Process

xApp Onboarding and Deploying

image

程式運作- Run EFK to process xApp log data

image

Execution

./xAppSec.sh -i

After initializing, a helm server is running. and waiting for xApp to onboard.

image

./xAppSec/sh -n

normal mode, to scan xApp image, Onboard xApp via descriptor

image

image