Zesheng Xi, Bo Zhang, Yuanyuan Ma, Chuan He, Yu-Na Wang
{"title":"无服务器计算防御的MDSC范式设计","authors":"Zesheng Xi, Bo Zhang, Yuanyuan Ma, Chuan He, Yu-Na Wang","doi":"10.1117/12.2671158","DOIUrl":null,"url":null,"abstract":"Serverless computing aims to handle all the system administration operations needed in cloud computing, thus, to provide a paradigm that greatly simplifies cloud programming. However, the security in serverless computing is regarded as an independent technology. The lack of security consideration in the initial design makes it difficult to handle the increasingly complicated attack scenario in serverless computing, especially for the vulnerabilities and backdoor based network attack. In this paper, we propose MDSC, a mimic defense enabled paradigm for serverless computing. Specifically, MDSC paradigm introduces Dynamic Heterogeneous Redundancy (DHR) structural model to serverless computing, and make fully use of features introduced by serverless computing to achieve an intrinsic security system with acceptable costs. We show the feasibility of MDSC paradigm by implementing a trial of MDSC paradigm based on Kubernetes and Knative. Analysis and experimental results show that MDSC paradigm can achieve high level security with acceptable cost.","PeriodicalId":227528,"journal":{"name":"International Conference on Artificial Intelligence and Computer Engineering (ICAICE 2022)","volume":"34 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-04-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"The MDSC paradigm design for serverless computing defense\",\"authors\":\"Zesheng Xi, Bo Zhang, Yuanyuan Ma, Chuan He, Yu-Na Wang\",\"doi\":\"10.1117/12.2671158\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Serverless computing aims to handle all the system administration operations needed in cloud computing, thus, to provide a paradigm that greatly simplifies cloud programming. However, the security in serverless computing is regarded as an independent technology. The lack of security consideration in the initial design makes it difficult to handle the increasingly complicated attack scenario in serverless computing, especially for the vulnerabilities and backdoor based network attack. In this paper, we propose MDSC, a mimic defense enabled paradigm for serverless computing. Specifically, MDSC paradigm introduces Dynamic Heterogeneous Redundancy (DHR) structural model to serverless computing, and make fully use of features introduced by serverless computing to achieve an intrinsic security system with acceptable costs. We show the feasibility of MDSC paradigm by implementing a trial of MDSC paradigm based on Kubernetes and Knative. Analysis and experimental results show that MDSC paradigm can achieve high level security with acceptable cost.\",\"PeriodicalId\":227528,\"journal\":{\"name\":\"International Conference on Artificial Intelligence and Computer Engineering (ICAICE 2022)\",\"volume\":\"34 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-04-28\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Conference on Artificial Intelligence and Computer Engineering (ICAICE 2022)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1117/12.2671158\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Artificial Intelligence and Computer Engineering (ICAICE 2022)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1117/12.2671158","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
The MDSC paradigm design for serverless computing defense
Serverless computing aims to handle all the system administration operations needed in cloud computing, thus, to provide a paradigm that greatly simplifies cloud programming. However, the security in serverless computing is regarded as an independent technology. The lack of security consideration in the initial design makes it difficult to handle the increasingly complicated attack scenario in serverless computing, especially for the vulnerabilities and backdoor based network attack. In this paper, we propose MDSC, a mimic defense enabled paradigm for serverless computing. Specifically, MDSC paradigm introduces Dynamic Heterogeneous Redundancy (DHR) structural model to serverless computing, and make fully use of features introduced by serverless computing to achieve an intrinsic security system with acceptable costs. We show the feasibility of MDSC paradigm by implementing a trial of MDSC paradigm based on Kubernetes and Knative. Analysis and experimental results show that MDSC paradigm can achieve high level security with acceptable cost.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
