Toward deceiving the intrusion attacks in containerized cloud environment using virtual private cloud‐based moving target defense. (30th November 2022)
- Record Type:
- Journal Article
- Title:
- Toward deceiving the intrusion attacks in containerized cloud environment using virtual private cloud‐based moving target defense. (30th November 2022)
- Main Title:
- Toward deceiving the intrusion attacks in containerized cloud environment using virtual private cloud‐based moving target defense
- Authors:
- Hyder, Muhammad Faraz
Ahmed, Waqas
Ahmed, Maaz - Abstract:
- Summary: The container‐based cloud has its distinct security challenges. In this article, moving target defense (MTD) is used to increase the cost and effort of the attacker to exploit resources and follow an attack path to compromise the critical resources in a container‐based cloud. The existing MTD mechanisms for cloud have not focused on intruder prevention inside containerized environment. The proposed solution is one of its kind that utilizes resource movement inside and across the virtual private network in the cloud to deceive intruders. The framework continuously changes the target/container to increase confusion about the routing path, so attackers cannot follow the simple attack path. This obscure cloud architecture increases the delay in attack and gives system/network administrators significant time to use Intrusion Detection mechanisms for countering the attack. The proposed scheme is implemented on the Google Cloud Platform (GCP) by using an extensive network of nodes hosting the stateful pods that are created and destroyed periodically. The experimental analysis confirmed that the proposed scheme substantially increased the attack path length and added obscurity at a low computation cost. However, as per experiments, implementing the proposed scheme in GCP slightly increases the dollar cost.
- Is Part Of:
- Concurrency and computation. Volume 35:Number 5(2023)
- Journal:
- Concurrency and computation
- Issue:
- Volume 35:Number 5(2023)
- Issue Display:
- Volume 35, Issue 5 (2023)
- Year:
- 2023
- Volume:
- 35
- Issue:
- 5
- Issue Sort Value:
- 2023-0035-0005-0000
- Page Start:
- n/a
- Page End:
- n/a
- Publication Date:
- 2022-11-30
- Subjects:
- containerization -- intrusion attacks -- Kubernetes -- moving target defense -- virtual private cloud
Parallel processing (Electronic computers) -- Periodicals
Parallel computers -- Periodicals
004.35 - Journal URLs:
- http://onlinelibrary.wiley.com/ ↗
- DOI:
- 10.1002/cpe.7549 ↗
- Languages:
- English
- ISSNs:
- 1532-0626
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3405.622000
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 25151.xml