Titulo Estágio
Evaluating intrusion detection approaches in unikernel deployments
Local do Estágio
SSE-CISUC
Enquadramento
The emergence of cloud computing services has urged the continuous necessity of lighter-weight deployment modes. At first virtual machines were the de facto for this type of system, however over recent years these platforms have been migrating towards smaller surface solutions. The main motivation for lighter solutions is mainly related to performance requirements and attack surface reduction through elimination of unnecessary services and libraries which do not play important roles in the product being offered. As a result, unikernel technology emerges as specialized, single-address-space machine images constructed by using library operating systems. It allows businesses to serve customers in a timelier manner through the reduction of the stack deployed. Nevertheless, security attacks targeting such technologies will occur and the evaluation and study of the effectiveness of monitoring and detection measures are extremely important, even more in cloud deployments.
Objetivo
The main objective of this project is to evaluate the effectiveness of anomaly and host-based intrusion detection techniques in unikernel-based deployments. For this, a representative setup for this technology must be developed, mainly focused on a target system. This work requires adapting a real-world application with known vulnerabilities to achieve its successful deployment into unikernel environments and conduct a rigorous experimental campaign that will be have its basis on attack injection procedures. This campaign will permit to analyze the detection capabilities of state-of-the-art intrusion detection algorithms.
As a result, the student will gain extensive practical experience with technologies that are increasingly being adopted as well as experience with empirical and evaluation procedures in security context.
Plano de Trabalhos - Semestre 1
T1. [10/09/2020 to 31/10/2020] Study intrusion detection state-of-the-art, unikernels and its security concepts.
T2. [21/10/2020 to 15/11/2020] Select and adapt a real-world application to a unikernel deployment.
T3. [15/11/2020 to 15/12/2020] Elicit and study intrusion detection techniques for unikernel environments.
T4. [01/12/2020 to 21/01/2021] Write the Dissertation Plan.
Plano de Trabalhos - Semestre 2
T5. [01/02/2021 to 22/03/2021] Define a representative scenario for evaluating the effectiveness of intrusion detection approaches.
T6. [20/03/2021 to 30/04/2021] Evaluate the effectiveness of the detection techniques in the defined scenario.
T7. [15/04/2021 to 31/05/2021] Write a scientific publication.
T8. [15/05/2021 to 01/07/2021] Write the thesis.
Condições
The work is to be executed at the laboratories of the CISUC’s Software and Systems Engineering Group. A workplace will be provided as well as the required computational resources.
Observações
There is the possibility to offer a scholarship to the student, at least for the second semester.
Duration of the scholarship: 6 months (at least)
Monthly scholarship: 752,38€
Orientador
Nuno Antunes
nmsa@dei.uc.pt 📩