Demo: Cloud-native Cyber Deception with Decepto

被引:0
|
作者
Santoro, Daniele [1 ]
Zambianco, Marco [1 ]
Facchinetti, Claudio [1 ]
Siracusa, Domenico [1 ]
机构
[1] Fdn Bruno Kessler, Ctr Cybersecur, Povo, Italy
来源
2024 IEEE SYMPOSIUM ON COMPUTERS AND COMMUNICATIONS, ISCC 2024 | 2024年
关键词
Cyber deception; cloud-native applications; Kubernetes;
D O I
10.1109/ISCC61673.2024.10733585
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
The disaggregation of monolithic applications in containerized microservices inevitably weaken their security posture. In this context, leveraging the cloning feature of containerized environments, we propose Decepto, a software platform that integrates a high-interaction cyber deception mechanism within cloud-native applications using Kubernetes (K8s). In particular, our deception solution automatically generates decoys as clones of production microservices and deploys them to look like legitimate microservices. Attackers that unknowingly interact with such deceptive artifacts are reliably detected and monitored. In this work, we first present Decepto technical implementation, then we demonstrate its functionalities and related computational performance overhead emulating a practical attack scenario on a real K8s cluster.
引用
收藏
页数:3
相关论文
共 50 条
  • [41] Knowledge representation of the state of a cloud-native application
    Joanna Kosińska
    Grzegorz Brotoń
    Maciej Tobiasz
    International Journal on Software Tools for Technology Transfer, 2024, 26 : 21 - 32
  • [42] Minimizing Resource Allocation for Cloud-Native Microservices
    Erdei, Roland
    Toka, Laszlo
    JOURNAL OF NETWORK AND SYSTEMS MANAGEMENT, 2023, 31 (02)
  • [43] Root Cause Analysis for Cloud-Native Applications
    Zurkowski, Bartosz
    Zielinski, Krzysztof
    IEEE TRANSACTIONS ON CLOUD COMPUTING, 2024, 12 (01) : 232 - 250
  • [44] Cloud-Native Repositories for Big Scientific Data
    Abernathey, Ryan P.
    Augspurger, Tom
    Banihirwe, Anderson
    Blackmon-Luca, Charles C.
    Crone, Timothy J.
    Gentemann, Chelle L.
    Hamman, Joseph J.
    Henderson, Naomi
    Lepore, Chiara
    McCaie, Theo A.
    Robinson, Niall H.
    Signell, Richard P.
    Computing in Science and Engineering, 2021, 23 (02): : 26 - 35
  • [45] A Reliability Assurance Framework for Cloud-Native Telco Workloads
    Verma, Mudit
    Behl, Dushyant
    Jayachandran, Praveen
    Singh, Amandeep
    Thomas, Mathews
    2023 15TH INTERNATIONAL CONFERENCE ON COMMUNICATION SYSTEMS & NETWORKS, COMSNETS, 2023,
  • [46] CAP-Oriented Design for Cloud-Native Applications
    Andrikopoulos, Vasilios
    Strauch, Steve
    Fehling, Christoph
    Leymann, Frank
    CLOUD COMPUTING AND SERVICES SCIENCE, CLOSER 2012, 2013, 367 : 215 - 229
  • [47] Cloud-Native Database Systems at Alibaba: Opportunities and Challenges
    Li, Feifei
    PROCEEDINGS OF THE VLDB ENDOWMENT, 2019, 12 (12): : 2263 - 2272
  • [48] uABNO: A Cloud-Native Architecture for Optical SDN Controllers
    Vilalta, Ricard
    Luis de la Cruz, Juan
    Mayoral Lopez-de-Lerma, Arturo
    Lopez, Victor
    Martinez, Ricardo
    Casellas, Ramon
    Munoz, Raul
    2020 OPTICAL FIBER COMMUNICATIONS CONFERENCE AND EXPOSITION (OFC), 2020,
  • [49] Ursa: Lightweight Resource Management for Cloud-Native Microservices
    Zhang, Yanqi
    Zhou, Zhuangzhuang
    Elnikety, Sameh
    Delimitrou, Christina
    2024 IEEE INTERNATIONAL SYMPOSIUM ON HIGH-PERFORMANCE COMPUTER ARCHITECTURE, HPCA 2024, 2024, : 954 - 969
  • [50] Predictive Autoscaling Orchestration for Cloud-native Telecom Microservices
    Duc-Hung Luong
    Huu-Trung Thieu
    Outtagarts, Abdelkader
    Ghamri-Doudane, Yacine
    2018 IEEE 5G WORLD FORUM (5GWF), 2018, : 153 - 158
12345