Metadata Assisted Supply-Chain Attack Detection for Ansible

Peer-Reviewed Research Paper
ConferenceIFIP Annual Conference on Data and Applications Security and Privacy (DBSec)
BookData and Applications Security and Privacy XXXIX
PublisherSpringer, Cham
DOI10.1007/978-3-031-96590-6_18
Pages333-350
Publication DateJune 24, 2025
StatusPublished
FieldSupply Chain Security / Infrastructure as Code
AuthorsPandu Ranga Reddy KonalaVimal KumarDavid BainbridgeJunaid Haseeb
Back to Research

Abstract

This study examines metadata-assisted detection of supply chain attacks in Infrastructure as Code (IaC), focusing on metadata's role in identifying security smells. Metadata, including dependency relationships and author records, provides insights into IaC script integrity and trustworthiness. The research explores how this contextual information can be leveraged to detect potential supply chain vulnerabilities in Ansible deployments.

Key Focus Areas

  • Supply chain attack detection in IaC
  • Metadata analysis for security
  • Ansible security smells identification
  • Dependency relationship analysis

View Publication

View on Springer