The Brno Red Hat engineering site collaborates with several universities not only in the Czech Republic and Slovakia but also in Europe. Our long-term partner universities are Masaryk University, Faculty of Informatics and Brno University of Technology, Faculty of Information Technology, but we also cooperate with several other universities, including Czech Technical University in Prague or Graz University of Technology, Austria.
Our engineers lead bachelor and master theses, we cooperate with university laboratories and researchers on projects and grants or sponsor Ph.D. students. We also deliver guest lectures, workshops or even whole courses at universities.
We also support high-school students and teachers, and also organize events for primary schools (for example, on teaching computer science to children).
Developing static analysis tools in the era of cloud-native systems
by Tomas Cerny (Baylor University, USA)
System-centric perspectives are necessary for broader reasoning of cloud-native systems for evolvability assurance. While dynamic analysis and tracing offer a certain alternative, it is limited in detail and has significant delays. Static analysis traditionally provides early feedback. However, conventional low-level static analysis tools fail to address emerging needs and multi-codebase operability common in cloud-native systems. Static analysis approaches need to adapt to current best practices for cloud-native systems like distributed codebases, decentralization, and heterogeneous code.
This talk shares our long-term research goals and accomplishments in this field. We introduce our prototypic intermediate representation of the system, mechanisms to extract it from heterogenous code, and practical transformations into visual representation aiding system reasoning. Finally, we aim to engage with the microservice and cloud audience and seek to identify practical community problems that could drive our future scientific efforts.
Tomas Cerny, PhD. is an assistant professor at Baylor University. He teaches software engineering and distributed systems, and together with his research team, they look into static analysis in the field of cloud-native systems. Tomas is a long-time collaborator with Red Hat Research; just this summer, he leads a team of undergraduate researchers visiting Red Hat in Brno to perform a research internship.
Join the RIG meeting with Google meet: https://meet.google.com/arv-uggu-xmr
Europe RIG Meetings Archive
Mark Little, Vice President of Middleware Engineering at Red Hat, has been named a Fellow of the U.K.’s Royal Academy of Engineering.
Three researchers from the Faculty of Informatics involved in Red Hat Research were awarded with the 2021 “MUNI Innovation Award”
Masaryk University awarded the 2021 “MUNI Innovation Award” at its Business Research Forum on November 11, 2021. These new awards aim at individual students and employees whose outputs have been successfully implemented in practice, have helped improve products or services or have otherwise contributed to increasing the social relevance of Masaryk University’s research activities.
Czech Technical University in Prague
Graz University of Technology
University of Žilina
Title Summary Research Area Universities research_area_hfilter Characterizing and optimizing reactive systems, a continuum language-runtime This research project was kicked off by a paper we published in REBLS 2021. This paper aimed at comparing the costs and benefits of three different reactive streams libraries for Java: do mature and complex libraries implementing involved optimizations perform better than newer libraries sacrificing such optimizations for a simpler codebase? Cloud-DS, Testing and Ops cloud-ds testing-and-ops PHYSICS: oPtimized HYbrid Space-time servIce Continuum in faaS PHYSICS is a high technology European research project with total funding of about 5ML€ proceeding with a consortium of 14 … AI-ML, Cloud-DS ai-ml cloud-ds Side-channel attacks on embedded devices and smartcards This project focuses on several aspects of side-channel attacks on embedded devices and smartcards, utilizing timing, power-analysis and other side-channels. … Security, Privacy, Cryptography Masaryk University security-privacy-cryptography Mining issued Common Criteria and FIPS140-2 certificates The security certification reports might be long but is also a trove of publicly available data about otherwise proprietary devices … Security, Privacy, Cryptography Masaryk University security-privacy-cryptography Verifying constant-time cryptographic algorithm implementations The aim of this project is to verify the timing side-channel resistance of cryptographic implementations. The project focuses on the constant time (and constant memory access) generic cryptographic implementations of selected cryptographic algorithms. T Security, Privacy, Cryptography Masaryk University security-privacy-cryptography Trusted Computing Ecosystem The project aims to study the TPM ecosystem as currently exists in deployed devices and software applications using it, establish the types of chips and their properties one can encounter, investigate the state of patching of known vulnerabilities like ROCA against Infineon’s TPM (CVE-2017-15361) or TPMFail against Intel’s fTPM (CVE-2019-11090) and STM’s TPM (CVE-2019-16863) and analyze a reliability of stored integrity measurements (PCRs) for remote attestation and disk encryption uses. Security, Privacy, Cryptography Masaryk University security-privacy-cryptography Improving Full Disk Encryption The primary focus of this project is also data integrity protection, either in combination with encryption (authentication encryption) or standalone using dm-integrity and dm-verity kernel driver. Security, Privacy, Cryptography Masaryk University security-privacy-cryptography Accelerating Microarchitectural Security Research We are working on processes and tooling to lower the barrier to entry into the field and accelerate attack research and mitigation across academia and industry. Security, Privacy, Cryptography Graz University of Technology security-privacy-cryptography Authentication in public open-source repositories This project focuses on user authentication in public repositories containing open-source projects, which are then used by commercial companies (e.g. Red Hat) as a source for their internally maintained repositories. Security, Privacy, Cryptography Masaryk University security-privacy-cryptography LART – LLVM Abstraction and Refinement Tool The goal of this tool is to provide LLVM-to-LLVM transformations that implement various program abstractions. Testing and Ops Masaryk University testing-and-ops Adaptive Learning of Programming The mission of Adaptive Learning of Programming is to make learning more efficient and engaging by personalizing educational systems using artificial intelligence techniques. AI-ML Masaryk University ai-ml Innovation Scorecard: Controlling framework for innovation projects in IT Innovation Scorecard is a conceptual performance measurement and management control framework specifically designed for work activities that relate to innovation. Its origin lies in the outcomes of a primary research project that was supported by the Czech Scientific Foundation during 2013-2015. This project’s objective was to ascertain whether organizations in the Czech Republic measure the efficiency of their innovations and what metrics they applied to measure these. Results confirmed that organizations that constantly managed innovation were engaged in identifying performance measurements to determine the level of value and benefits associated with innovation. Brno University of Technology Perun: Lightweight Performance Version System Perun is an open source light-weight Performance Version System, which works as a wrapper over existing Version Control Systems and in parallel manages performance profiles corresponding to different versions of projects. Moreover, it offers a tool suite suitable for automation of the performance regression test runs, postprocessing of existing profiles or effective interpretation of the results. Brno University of Technology DiffKemp: Automatic analysis of semantic differences in kernel options The project aims at creating a tool for automatic analysis of differences in the code between versions of the Linux kernel. The goal is to determine whether the semantics (the effect) of some kernel option, function, or parameter, changed between two kernel versions Brno University of Technology Symbiotic Symbiotic is an open-source framework for program analysis integrating instrumentation, static program slicing and various program analysis tools. Testing and Ops Masaryk University testing-and-ops Vega Project The Vega Project team at Red Hat came up with an idea to harness the power of Kubernetes to provide the next-generation open-source tool for high-performance computing. The project is way past the design phase, and the team is already working on the proof-of-concept implementation using Red Hat OpenShift Container Platform. Masaryk University Quality Assurance System for Internet of Things Technology The main goal is to design, implement and verify a framework for quality assurance of products based on the Internet of Things concept. The aim of the framework is to help individual IoT projects to establish an efficient testing and verification strategy of the infrastructure. The proposed framework is based on a model of the IoT infrastructure, composed of methodological part, driven by university team, and a technical part, mainly worked on by Red Hat engineers. Testing and Ops Czech Technical University testing-and-ops AUFOVER – The Automation of Formal Verification The goal of the Automation of Formal Verification (AUFOVER) project is to develop automated formal verification tools and integrate them for industrial use. The tools to be developed or improved within the projects are Verification Server, Verification Server Client Application, csmock plug-ins, DIVINE, Symbiotic and Testos. The purpose of the grant is to finish the development of university tools based on formal mathematical methods and their transfer to a commercial environment, including integration with industrial partners’ tools and incorporation of these tools into the commercial processes for software verification. Testing and Ops Brno University of Technology, Masaryk University testing-and-ops Usable Security for Developers This project focuses on the cryptographic APIs with respect to their developer usability. Such APIs are notoriously complex and prone to usage errors – our goal is to analyze their (in)correct usage and propose precautions and guidelines to achieve better usability and security. Security, Privacy, Cryptography Masaryk University security-privacy-cryptography Avocado Project The goal of the Avocado project, as a generic test automation framework, is to provide a solid foundation for software projects to build their testing needs on. With Avocado, common testing problems are solved at the framework level, and developers can spend more of their time writing tests that, by default, will adhere to best practices. Testing and Ops Czech Technical University, Karlstad University testing-and-ops