Low-Level Exploitation Mitigation by Diverse Microservices - Archive ouverte HAL Access content directly
Conference Papers Year : 2017

Low-Level Exploitation Mitigation by Diverse Microservices

(1) , (1)
1
Christian Otterstad
  • Function : Author
  • PersonId : 1026112
Tetiana Yarygina
  • Function : Author
  • PersonId : 1026113

Abstract

This paper discusses a combination of isolatable microservices and software diversity as a mitigation technique against low-level exploitation; the effectiveness and benefits of such an architecture are substantiated. We argue that the core security benefit of microservices with diversity is increased control flow isolation. Additionally, a new microservices mitigation technique leveraging a security monitor service is introduced to further exploit the architectural benefits inherent to microservice architectures.
Fichier principal
Vignette du fichier
449571_1_En_4_Chapter.pdf (324.79 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01677618 , version 1 (08-01-2018)

Licence

Attribution - CC BY 4.0

Identifiers

Cite

Christian Otterstad, Tetiana Yarygina. Low-Level Exploitation Mitigation by Diverse Microservices. 6th European Conference on Service-Oriented and Cloud Computing (ESOCC), Sep 2017, Oslo, Norway. pp.49-56, ⟨10.1007/978-3-319-67262-5_4⟩. ⟨hal-01677618⟩
100 View
202 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More