Demo: Cloud-native Cyber Deception with Decepto

被引：0

作者：

Santoro, Daniele ^{[1
]}

Zambianco, Marco ^{[1
]}

Facchinetti, Claudio ^{[1
]}

Siracusa, Domenico ^{[1
]}

机构：

[1] Fdn Bruno Kessler, Ctr Cybersecur, Povo, Italy

来源：

2024 IEEE SYMPOSIUM ON COMPUTERS AND COMMUNICATIONS, ISCC 2024 | 2024年

关键词：

Cyber deception; cloud-native applications; Kubernetes;

D O I：

10.1109/ISCC61673.2024.10733585

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

The disaggregation of monolithic applications in containerized microservices inevitably weaken their security posture. In this context, leveraging the cloning feature of containerized environments, we propose Decepto, a software platform that integrates a high-interaction cyber deception mechanism within cloud-native applications using Kubernetes (K8s). In particular, our deception solution automatically generates decoys as clones of production microservices and deploys them to look like legitimate microservices. Attackers that unknowingly interact with such deceptive artifacts are reliably detected and monitored. In this work, we first present Decepto technical implementation, then we demonstrate its functionalities and related computational performance overhead emulating a practical attack scenario on a real K8s cluster.

引用

页数：3

共 50 条

[31] Knowledge representation of the state of a cloud-native application
Kosinska, Joanna
Broton, Grzegorz
Tobiasz, Maciej
INTERNATIONAL JOURNAL ON SOFTWARE TOOLS FOR TECHNOLOGY TRANSFER, 2024, 26 (01) : 21 - 32
[32] Cloud-native distributed genomic pileup operations
Wiewiorka, Marek
Szmurlo, Agnieszka
Stankiewicz, Pawel
Gambin, Tomasz
BIOINFORMATICS, 2023, 39 (01)
[33] Autonomic Management Framework for Cloud-Native Applications
Joanna Kosińska
Krzysztof Zieliński
Journal of Grid Computing, 2020, 18 : 779 - 796
[34] Towards a Quality Model for Cloud-native Applications
Lichtenthaeler, Robin
Wirtz, Guido
SERVICE-ORIENTED AND CLOUD COMPUTING, 2022, 13226 : 109 - 117
[35] Experimental Evaluation of the Cloud-Native Application Design
Brunner, Sandro
Blochlinger, Martin
Toffetti, Giovanni
Spillner, Josef
Bohnert, Thomas Michael
2015 IEEE/ACM 8TH INTERNATIONAL CONFERENCE ON UTILITY AND CLOUD COMPUTING (UCC), 2015, : 488 - 493
[36] Minimizing Resource Allocation for Cloud-Native Microservices
Roland Erdei
Laszlo Toka
Journal of Network and Systems Management, 2023, 31
[37] Cloud-Native Applications-The Journey Continues
Yousif, Mazin
IEEE CLOUD COMPUTING, 2017, 4 (05): : 4 - 5
[38] Cloud-Native Security Using Zero Trust
Moyle, Ed
ISACA Journal, 2022, 3 : 33 - 41
[39] A Survey on Billing Models for Cloud-Native Applications
Paredes, Jose Rodrigo Benitez
Lopez-Pires, Fabio
CLOUD COMPUTING, BIG DATA & EMERGING TOPICS, JCC-BD&ET 2022, 2022, 1634 : 20 - 30
[40] Preproduction Deploys: Cloud-Native Integration Testing
Carroll, Jeremy J.
Anand, Pankaj
Guo, David
2021 IEEE CLOUD SUMMIT (CLOUD SUMMIT 2021), 2021, : 41 - 48

← 1 2 3 4 5 →