Dibyendu Brinto Bose - Published Papers

Notable Published Paper(for full list please visit my google scholar)

Security Misconfigurations in Open Source Kubernetes Manifests (Published TOSEM 22)

Akond Rahman, Shazibul Islam Shamim, Dibyendu Brinto Bose, Rahul Pandita

This paper aims to help practitioners secure their Kubernetes clusters by identifying security misconfigurations that occur in Kubernetes manifests. Finally, we developed one static analyzer tool(SliKube) to quantify the frequency of these misconfigurations.

‘Under-reported’ Security Defects in Kubernetes Manifests Preprint

2nd International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS), co-located with the 43rd International Conference on Software Engineering (ICSE), 2021

Dibyendu Brinto Bose, Akond Rahman, Shazibul Islam Shamim

In this work, we first quantify how frequently security defects appear in Kubernetes manifests files that are used to manage kubernetes. We have developed a curated dataset of security defects in Kubernetes manifests and performed an empirical analysis of how frequently security defects occur in Kubernetes manifests.

Exploring the Barriers that Influence Debugger Usage for Students (Published VL/HCC 23)

Minhyuk Ko, Dibyendu Brinto Bose, and Chris Brown (Best short paper Honourable mention)

In this paper, we aimed to understand students' hurdles while using debugger. Like other empirical studies, we faced challenges in data collection. Later, we used open coding to categorize and extract useful information from responses.

An Empirical Study of Vulnerabilities in Robotics Preprint

45th IEEE Computer Society Computers, Software, and Applications Conference (COMPSAC), 2021

Kaitlyn Cottrell,Dibyendu Brinto Bose,Dibyendu Brinto Bose,Hossain Shahriar, Akond Rahman

In this paper, by meticulous examination of the robotics-related commits, we identify the security defects in robotics development. Goal of this paper is to help practitioners mitigate vulnerabilities in robotics systems by conducting an empirical study of vulnerabilities in robotics systems.

How Do Students Feel About Automated Security Static Analysis Exercises? Preprint

Frontiers in Education Conference (FIE) 21

Akond Rahman, Hossain Shahriar, Dibyendu Brinto Bose

This work in progress (WIP) paper presents our experience related to two exercises that focus on automated security static analysis, a practice used to integrate security into development and operations (DevOps). Our WIP paper lays the groundwork to build course materials that will facilitate development, deployment, and dissemination of DevOps-related education materials that also incorporate cybersecurity concepts.