发布求助
文献互助 智能选刊 最新文献

2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC)最新文献

筛选
英文 中文
A Service-Oriented Digital Twins Framework for Smart Grid Management 面向服务的智能电网管理数字孪生框架
2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC) Pub Date : 2022-09-01 DOI: 10.1109/SRMC57347.2022.00006
Manolya Atalay
{"title":"A Service-Oriented Digital Twins Framework for Smart Grid Management","authors":"Manolya Atalay","doi":"10.1109/SRMC57347.2022.00006","DOIUrl":"https://doi.org/10.1109/SRMC57347.2022.00006","url":null,"abstract":"Cyber-Physical Systems (CPS) are infrastructures with capabilities of perception, networking, and computation. They consist of physical and virtual components that interact with their environment. Their main goal is to monitor the physical system in real-time to have its behavior under control. Some of these infrastructures require well-defined security measures due to their critical processing capabilities. Digital Twins are defined as virtual structures emulating the physical components in various systems. They enable the deployment of isolated simulation environments to test changes and specify the security issues of a CPS. One of the main applications of CPS is smart grids. Microservices allow us to create fine-grained operations on automation systems. Using small, well-defined, modular processes, we can observe the states of smart grid infrastructure in many stages. In this work, we aim to design a framework that can create a reliable environment for smart grids compliant with existing industrial standards. We propose a service-oriented digital twins framework consisting of entities such as power meters, data aggregators, and system parameters for providing a scalable and highly available platform for complex energy systems.","PeriodicalId":205724,"journal":{"name":"2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2022-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132860681","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
An Empirical Analysis of IDS Approaches in Container Security 容器安全中IDS方法的实证分析
2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC) Pub Date : 2022-09-01 DOI: 10.1109/SRMC57347.2022.00007
Yigit Sever, Goktug Ekinci, Adnan Harun Dogan, Bugra Alparslan, Abdurrahman Said Gurbuz, Vahab Jabrayilov, Pelin Angin
{"title":"An Empirical Analysis of IDS Approaches in Container Security","authors":"Yigit Sever, Goktug Ekinci, Adnan Harun Dogan, Bugra Alparslan, Abdurrahman Said Gurbuz, Vahab Jabrayilov, Pelin Angin","doi":"10.1109/SRMC57347.2022.00007","DOIUrl":"https://doi.org/10.1109/SRMC57347.2022.00007","url":null,"abstract":"Microservices architecture has been praised as a lightweight, modular and robust alternative to monolithic software in recent years with software containerization bringing parallel ideas to the table against bare metal and even virtual machine based software deployment solutions. While containers provide support for agile software development in the cloud, they suffer from security issues due to their lightweight structure not providing isolation as strong as that of virtual machines. This calls for the development of robust intrusion detection systems (IDS) for containers, taking into account their specific vulnerabilities. Existing IDS for containerized software deployments have mainly used host-based syscall monitoring, with only a few utilizing network-based monitoring without justification for the particular sensor used. In this paper, we aim to close this research gap by empirically evaluating the performances of system call and network flow based features in machine learning-based intrusion detection for containers when subjected to the same attacks. Our results show that basing the IDS on the network layer exhibits better performance than the host-based IDS for the investigated vulnerabilities, demonstrating the need for network monitoring for enhanced container security.","PeriodicalId":205724,"journal":{"name":"2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC)","volume":"45 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2022-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"127594539","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 1
A Fault and Intrusion Tolerance Framework for Containerized Environments: A Specification-Based Error Detection Approach 容器化环境的容错和容错框架:基于规范的错误检测方法
2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC) Pub Date : 2022-09-01 DOI: 10.1109/SRMC57347.2022.00005
Taous Madi, Paulo Esteves-Verissimo
{"title":"A Fault and Intrusion Tolerance Framework for Containerized Environments: A Specification-Based Error Detection Approach","authors":"Taous Madi, Paulo Esteves-Verissimo","doi":"10.1109/SRMC57347.2022.00005","DOIUrl":"https://doi.org/10.1109/SRMC57347.2022.00005","url":null,"abstract":"Container-based virtualization has gained momentum over the past few years thanks to its lightweight nature and support for agility. However, its appealing features come at the price of a reduced isolation level compared to the traditional host-based virtualization techniques, exposing workloads to various faults, such as co-residency attacks like container escape. In this work, we propose to leverage the automated management capabilities of containerized environments to derive a Fault and Intrusion Tolerance (FIT) framework based on error detection-recovery and fault treatment. Namely, we aim at deriving a specification-based error detection mechanism at the host level to systematically and formally capture security state errors indicating breaches potentially caused by malicious containers. Although the paper focuses on security side use cases, results are logically extendable to accidental faults. Our aim is to immunize the target environments against accidental and malicious faults and preserve their core dependability and security properties.","PeriodicalId":205724,"journal":{"name":"2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC)","volume":"72 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2022-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126332352","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
Building Secure Environments for Microservices 为微服务构建安全环境
2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC) Pub Date : 2022-09-01 DOI: 10.1109/SRMC57347.2022.00008
B. Northern, D. Ulybyshev
{"title":"Building Secure Environments for Microservices","authors":"B. Northern, D. Ulybyshev","doi":"10.1109/SRMC57347.2022.00008","DOIUrl":"https://doi.org/10.1109/SRMC57347.2022.00008","url":null,"abstract":"Microservice-based architectures are widely used in modern software and the number of cyber attacks on software is increasing. It is essential to make microservices more reliable and resilient against cyber attacks. In this paper, we propose a methodology to detect configurations of computing systems that host microservices and containers, evaluate cyber risks of their essential components in an automatic continuous mode, and reconfigure environments aiming to make them less vulnerable against cyber attacks. Our solution supports multiple operating systems and hardware configurations. For cyber risk evaluation, our approach relies on a public database of Common Vulnerabilities and Exposures for software and hardware, as well as penetration testing and static analysis. Furthermore, the cyber risk evaluation model considers the attributes of microservices, such as their privilege level. We will show least and most vulnerable configurations for computing systems that use popular operating systems and applications.","PeriodicalId":205724,"journal":{"name":"2022 International Workshop on Secure and Reliable Microservices and Containers (SRMC)","volume":"310 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2022-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"131786077","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信