Low-Level Exploitation Mitigation by Diverse Microservices - Service-Oriented and Cloud Computing
Conference Papers Year : 2017

Low-Level Exploitation Mitigation by Diverse Microservices

Christian Otterstad
  • Function : Author
  • PersonId : 1026112
University of Bergen
Tetiana Yarygina
  • Function : Author
  • PersonId : 1026113
University of Bergen

Abstract

This paper discusses a combination of isolatable microservices and software diversity as a mitigation technique against low-level exploitation; the effectiveness and benefits of such an architecture are substantiated. We argue that the core security benefit of microservices with diversity is increased control flow isolation. Additionally, a new microservices mitigation technique leveraging a security monitor service is introduced to further exploit the architectural benefits inherent to microservice architectures.

Domains

Computer Science [cs]
Fichier principal
Vignette du fichier
449571_1_En_4_Chapter.pdf (324.79 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Hal Ifip  : Connect in order to contact the contributor

https://inria.hal.science/hal-01677618

Submitted on : Monday, January 8, 2018-3:01:10 PM

Last modification on : Friday, November 20, 2020-4:22:03 PM

Long-term archiving on : Wednesday, May 23, 2018-3:53:29 PM

Download

Dates and versions

hal-01677618 , version 1 (08-01-2018)

Licence

Attribution

Identifiers

Cite

Christian Otterstad, Tetiana Yarygina. Low-Level Exploitation Mitigation by Diverse Microservices. 6th European Conference on Service-Oriented and Cloud Computing (ESOCC), Sep 2017, Oslo, Norway. pp.49-56, ⟨10.1007/978-3-319-67262-5_4⟩. ⟨hal-01677618⟩

Export

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

IFIP-LNCS IFIP IFIP-TC IFIP-WG IFIP-ESOCC IFIP-TC2 IFIP-WG2-14
129 View
265 Download

Altmetric

Share

More