Low-Level Exploitation Mitigation by Diverse Microservices

Otterstad, Christian; Yarygina, Tetiana

doi:10.1007/978-3-319-67262-5_4

Cited by 8 publications

(6 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The external threats come from other hosts, whereas internal threats arise from entities within the boundary of the system. Microservices architectures are vulnerable to both external and internal threats . Based on this aspect, we can categorize the works broadly into two.…”

Section: Taxonomy Based On Different Aspects Of Msasmentioning

confidence: 99%

“…These include users, microservices, and applications that are not part of the system under consideration. Otterstad and Yarygina discussed the various attack scenarios possible in microservices‐based systems . In order to raise the security level offered by microservices systems, the interfaces with direct contact to the external entities must be minimum, communication between microservices need to be eliminated, wherever redundant, and nodes with more security should be placed at the critical points in the network, so as to protect the more profitable microservices.…”

Section: Taxonomy Based On Different Aspects Of Msasmentioning

confidence: 99%

See 1 more Smart Citation

Straddling the crevasse: A review of microservice software architecture foundations and recent advancements

Joseph

Chandrasekaran

2019

Softw Pract Exp

View full text Add to dashboard Cite

Microservice architecture style has been gaining wide impetus in the software engineering industry. Researchers and practitioners have adopted the microservices concepts into several application domains such as the internet of things, cloud computing, service computing, and healthcare. Applications developed in alignment with the microservices principles require an underlying platform with management capabilities to coordinate the different microservice units and ensure that the application functionalities are delivered to the user. A multitude of approaches has been proposed for the various tasks in microservices-based systems. However, since the field is relatively young, there is a need to organize the different research works. In this study, we present a comprehensive review of the research approaches directed toward microservice architectures and propose a multilevel taxonomy to categorize the existing research. The study also discusses the different distributed computing paradigms employing microservices and identifies the open research challenges in the domain.

show abstract

Section: Taxonomy Based On Different Aspects Of Msasmentioning

confidence: 99%

Section: Taxonomy Based On Different Aspects Of Msasmentioning

confidence: 99%

Straddling the crevasse: A review of microservice software architecture foundations and recent advancements

Joseph

Chandrasekaran

2019

Softw Pract Exp

View full text Add to dashboard Cite

show abstract

“…In particular, the µGE exploits the fact that a partially compromised microservice network has not yielded total control to the attacker. A strong separation of the control flow and increased isolation are inherent benefits of microservice architectures [8,9].…”

Section: Minimaxmentioning

confidence: 99%

“…Scale up and down n-variant services. The N-variant microservice system was proposed as a security measure by Otterstad&Yarygina [8]. This action uses the existing diversification techniques (compiler diversity/binary rewriting and cloud diversity) to spawn additional microservices, which feed their result to a governor node that compare the results for consistency.…”

Section: Intrusion Response: Defender's Actionsmentioning

confidence: 99%

“…Sun et al [7] proposed a virtual network monitoring solution that enforces policies over the network traffic in the cloud. Otterstad & Yarygina [8] pointed out the isolation benefits of microservices, as well as proposed the use of N-version programming for a simplified IDS. Yarygina & Bagge [9] have investigated automation of secure inter-service communication and defense-in-depth principle for microservices.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Game of Microservices: Automated Intrusion Response

Yarygina

Otterstad

2018

Distributed Applications and Interoperable Systems

Self Cite

View full text Add to dashboard Cite

The microservice architecture is a subtype of distributed systems that has been attracting a lot of interest both in the industry and academia. Emerging research recognizes the need for a better understanding of microservice security, and, in particular, mechanisms that enable defence-in-depth and adaptive security. With the continuously growing number of possible attacks and defenses, the choice in the optimal defense strategy becomes non-trivial as well as time critical. We propose a cost-sensitive adaptable intrusion response system for microservices, which uses a game theoretic approach to automatically respond to network attacks in real time. Furthermore, we discuss both the applicable attacks and defense responses specific to microservices.

show abstract

Emerging Threats in Cloud Computing

Choudhary

Bhadada

2020

Communications in Computer and Information Science

View full text Add to dashboard Cite

Low-Level Exploitation Mitigation by Diverse Microservices

Cited by 8 publications

References 9 publications

Straddling the crevasse: A review of microservice software architecture foundations and recent advancements

Straddling the crevasse: A review of microservice software architecture foundations and recent advancements

A Game of Microservices: Automated Intrusion Response

Emerging Threats in Cloud Computing

Contact Info

Product

Resources

About