Titulo Estágio
Detecting Intrusions in Microservices Architectures
Áreas de especialidade
Engenharia de Software
Comunicações, Serviços e Infraestruturas
Local do Estágio
SSE-CISUC
Enquadramento
The adoption rate of microservices has been raising, pushing the needs for better standards of reliability and availability. To deal with the everchanging demand in resources, these systems are constantly scaling and adapting to the loads received. This increases the attack surface, making it important to monitor the system to detect intrusions and stop them as soon as possible, therefore increasing concerns in the security of these systems. Detection can be done by analyzing the behavior of the host or the network traffic; it can focus on a service or a set of services, operating at the service-level or the system-level, respectively. This work will focus particularly on host-based mechanisms working at service and system levels.
The intrusion detection mechanism must be able to effectively detect the attacks with low/moderate resource consumption while avoiding too many false positives. Also, it must detect the attack as fast as possible to allow very low reaction times.
Objetivo
The goal of this project is to research and propose new host-based intrusion detection mechanisms able to detect attacks directed at multiple services of a microservices architecture.
Such mechanisms should detect attacks effectively and be cost-effective in terms of performance. Preliminary studies will be necessary to identify the most relevant attacks for this scenario. The mechanisms should be demonstrated in representative testeds, which need to be carefully studied in order to assure its relevancy in the industry.
Plano de Trabalhos - Semestre 1
T1. [10/09/2021 to 31/10/2021] State of the art analysis and elicitation of distributed attacks.
T2. [21/10/2021 to 10/11/2021] Research and evaluation of different experimental testbeds.
T3. [21/10/2021 to 10/11/2021] Applicability assessment of different attacks.
T4. [10/11/2021 to 10/12/2021] Conceptual design of the intrusion detection mechanisms.
T5. [01/12/2021 to 15/01/2022] Write the Dissertation Plan.
Plano de Trabalhos - Semestre 2
T6. [01/02/2022 to 10/03/2022] Implementation of the conceptual design.
T7. [01/03/2022 to 10/04/2022] Definition and preparation of the validation experiments.
T8. [20/03/2022 to 30/04/2022] Execution of the experiments and analysis of the results.
T9. [15/04/2022 to 31/05/2022] Write a scientific publication.
T10. [15/05/2022 to 01/07/2022] Write the thesis.
Condições
The work is to be executed at the laboratories of the CISUC’s Software and Systems Engineering Group. A workplace will be provided as well as the required computational resources.
Observações
Sem observações.
Orientador
Nuno Antunes / José Flora
nmsa@dei.uc.pt 📩