Demo: Cloud-native Cyber Deception with Decepto

被引:0
|
作者
Santoro, Daniele [1 ]
Zambianco, Marco [1 ]
Facchinetti, Claudio [1 ]
Siracusa, Domenico [1 ]
机构
[1] Fdn Bruno Kessler, Ctr Cybersecur, Povo, Italy
来源
2024 IEEE SYMPOSIUM ON COMPUTERS AND COMMUNICATIONS, ISCC 2024 | 2024年
关键词
Cyber deception; cloud-native applications; Kubernetes;
D O I
10.1109/ISCC61673.2024.10733585
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
The disaggregation of monolithic applications in containerized microservices inevitably weaken their security posture. In this context, leveraging the cloning feature of containerized environments, we propose Decepto, a software platform that integrates a high-interaction cyber deception mechanism within cloud-native applications using Kubernetes (K8s). In particular, our deception solution automatically generates decoys as clones of production microservices and deploys them to look like legitimate microservices. Attackers that unknowingly interact with such deceptive artifacts are reliably detected and monitored. In this work, we first present Decepto technical implementation, then we demonstrate its functionalities and related computational performance overhead emulating a practical attack scenario on a real K8s cluster.
引用
收藏
页数:3
相关论文
共 50 条
  • [21] Cloud-native Deploy-ability: An Analysis of Required Features of Deployment Technologies to Deploy Arbitrary Cloud-native Applications
    Wurster, Michael
    Breitenbuecher, Uwe
    Brogi, Antonio
    Leymann, Frank
    Soldani, Jacopo
    PROCEEDINGS OF THE 10TH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING AND SERVICES SCIENCE (CLOSER), 2020, : 171 - 180
  • [22] Enriching Cloud-native Applications with Sustainability Features
    Vitali, Monica
    Schmiedmayer, Paul
    Bootz, Valentin
    2023 IEEE INTERNATIONAL CONFERENCE ON CLOUD ENGINEERING, IC2E, 2023, : 21 - 31
  • [23] Autonomic Management Framework for Cloud-Native Applications
    Kosinska, Joanna
    Zielinski, Krzysztof
    JOURNAL OF GRID COMPUTING, 2020, 18 (04) : 779 - 796
  • [24] Enhancement of Cloud-native applications with Autonomic Features
    Joanna Kosińska
    Krzysztof Zieliński
    Journal of Grid Computing, 2023, 21
  • [25] Designing a Cloud-native Weigh-In-Motion
    Kirushanth, Sivaramalingam
    Kabaso, Boniface
    2019 OPEN INNOVATIONS CONFERENCE (OI), 2019, : 25 - 29
  • [26] Cloud-Native Repositories for Big Scientific Data
    Abernathey, Ryan P.
    Blackmon-Luca, Charles C.
    Crone, Timothy J.
    Henderson, Naomi
    Lepore, Chiara
    Augspurger, Tom
    Banihirwe, Anderson
    Gentemann, Chelle L.
    Hamman, Joseph J.
    Henderson, Naomi
    Lepore, Chiara
    McCaie, Theo A.
    Robinson, Niall H.
    Signell, Richard P.
    COMPUTING IN SCIENCE & ENGINEERING, 2021, 23 (02) : 26 - 35
  • [27] Bringing Cloud-Native Storage to SAP IQ
    Abouzour, Mohammed
    Aluc, Gunes
    Bowman, Ivan T.
    Deng, Xi
    Marathe, Nandan
    Ranadive, Sagar
    Sharique, Muhammed
    Smirnios, John C.
    SIGMOD '21: PROCEEDINGS OF THE 2021 INTERNATIONAL CONFERENCE ON MANAGEMENT OF DATA, 2021, : 2410 - 2422
  • [28] Moving Target Defense for Cloud-Native Applications
    Awarkeh, Ali
    El-Malki, Rim
    Rebecchi, Filippo
    PROCEEDINGS OF THE 27TH CONFERENCE ON INNOVATION IN CLOUDS, INTERNET AND NETWORKS, ICIN, 2024, : 130 - 137
  • [29] Cloud-native application design in the telecom domain
    Persson, Henrik Saavedra
    Kassaei, Hossein
    Ericsson Review (English Edition), 2019, 100 (02): : 40 - 48
  • [30] μManycore: A Cloud-Native CPU for Tail at Scale
    Stojkovic, Jovan
    Liu, Chunao
    Shahbaz, Muhammad
    Torrellas, Josep
    PROCEEDINGS OF THE 2023 THE 50TH ANNUAL INTERNATIONAL SYMPOSIUM ON COMPUTER ARCHITECTURE, ISCA 2023, 2023, : 459 - 473
12345