Immunizer: A Scalable Loosely-Coupled Self-Protecting Software Framework using Adaptive Microagents and Parallelized Microservices

Iraqi, Omar; Bakkali, Hanan El

doi:10.1109/wetice49692.2020.00013

Cited by 3 publications

(5 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The security of the cloud-based system depends critically on intrusion detection and response. To foster autonomy and deep security, Iraqi et al [ 50 ] proposed the Immunizer framework, which uses distributed cluster computing, parallelism, and asynchronous data streaming for monitoring, unsupervised learning for intrusion detection, as well as heuristic-based attack signature generation and intrusion prevention. As a safeguard against potential network attacks, a cost-sensitive adaptive intrusion response system for microservices was proposed by Yarygina et al [ 53 ], which employs a game-theoretic method to respond to network intrusions in real-time automatically.…”

Section: Resultsmentioning

confidence: 99%

“…The usage of machine learning mainly focuses on the identification of abnormal behavior to determine a system’s resilience to attacks and failures. Iraqi et al [ 50 ] presented a framework that utilizes autonomic computing and a microagent/microservice architecture approach, and it expands their application-level unsupervised outlier-based intrusion detection and prevention framework. Parallelism, asynchronous data streaming, and distributed cluster computing are also utilized.…”

Section: Resultsmentioning

confidence: 99%

See 1 more Smart Citation

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Rahaman

Islam

Černý

et al. 2023

Sensors

View full text Add to dashboard Cite

Security is a significant priority for cloud-native systems, regardless of the system size and complexity. Therefore, one must utilize a set of defensive mechanisms or controls to protect the system from exploitation by potential adversaries. There is an expanding amount of research on security issues, including attacks against individual microservices or overall systems and their corresponding defense mechanism options. This study intends to provide a comprehensive overview of currently used defense mechanisms involving static analysis that can detect and react against associated attacks and vulnerabilities. We present a systematic literature review that extracts current approaches for the security analysis of microservices and the violation of security principles. We gathered 1049 relevant publications, of which 50 were selected as primary studies. We are providing practitioners and developers with a structured survey of the existing literature of defensive solutions for microservice architectures and cloud-native systems to aid them in identifying applicable solutions for their systems.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Resultsmentioning

confidence: 99%

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Rahaman

Islam

Černý

et al. 2023

Sensors

View full text Add to dashboard Cite

show abstract

“…This involves both the security of the managing and the managed system in addition to their interactions. While the security of a managed system has been studied in multiple domains [1,67,89,122,166,171,178,278], to the best of our knowledge, there has been no research that analyzes the security of the managing system or the adaptation mechanisms associated with the adaptation process. Security analysis of the adaptation process is critical, since self-adaptive systems are additionally vulnerable to classes of attacks that exploit the adapting or evolving nature of a system.…”

Section: Discussionmentioning

confidence: 99%

“…These attacks exploit information exposed in one state of the system to compromise a later state that can be reached during or after adaptation. Moreover, risk identification and analysis is often performed at design time [122,227]. Runtime security analysis is required to cope with systems that adapt often and exhibit dynamic behavior.…”

Section: Discussionmentioning

confidence: 99%

“…Software component rejuvenation is employed to restore the compromised components to a previously identified operational state. Iraqo et al [122] provide an intrusion detection and prevention framework that leverages microagents and microservices. This approach uses unsupervised machine learning and heuristics to detect and prevent intrusions.…”

Section: Self-protecting Systemsmentioning

confidence: 99%

See 1 more Smart Citation

Design and Analysis of Self-protection: Adaptive Security for Software-Intensive Systems

Skandylas¹

View full text Add to dashboard Cite

Today's software landscape features a high degree of complexity, frequent changes in requirements and stakeholder goals, and uncertainty.Uncertainty and high complexity imply a threat landscape where cybersecurity attacks are a common occurrence while their consequences are often severe. Self-adaptive systems have been proposed to mitigate the complexity and frequent changes by adapting at run-time to deal with situations not known at design time.Self-adaptive systems that aim to identify, analyse and mitigate threats autonomously are called self-protecting systems.This thesis contributes approaches towards developing systems with self-protection capabilities under two perspectives. Under the first perspective, we enhance the security of component-based systems and equip them with self-protection capabilities that reduce the exposedattack surface or provide efficient defenses against identified attacks. We target systems where information about the system components and the adaptationdecisions is available, and control over the adaptation is possible. We employ runtime threat modeling and analysis using quantitative risk analysis and probabilistic verification to rank adaptations to be applied in the system in terms of their security levels. We then introduce modular and incremental verification approaches to tackle the scalability issues of probabilistic verification to be able to analyze larger-scale software systems.To protect against cyberattacks that cannot be mitigated by reducing the exposed attack surface, we propose an approach to analyze the security of different software architectures incorporating countermeasures to decide on the most suitable ones to evolve to. Under the second perspective, we study open decentralized systems where we have limited information about and limited control over the system entities. We employ decentralized information flow control mechanisms to enforce security by controlling the interactions among the system elements.We extend decentralized information flow control by incorporating trust and adding adaptationcapabilities that allow the system to identify security threats and self-organize to maximize trust between the system entities.

show abstract

Bi-objective optimization of availability and cost for cloud services

Bento

Soares²,

Ferreira³

et al. 2022

2022 IEEE 21st International Symposium on Network Computing and Applications (NCA)

View full text Add to dashboard Cite

Immunizer: A Scalable Loosely-Coupled Self-Protecting Software Framework using Adaptive Microagents and Parallelized Microservices

Cited by 3 publications

References 10 publications

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Design and Analysis of Self-protection: Adaptive Security for Software-Intensive Systems

Bi-objective optimization of availability and cost for cloud services

Contact Info

Product

Resources

About