Upgrade to Pro — share decks privately, control downloads, hide ads and more …

About being the Tortoise or the Hare? Making Cloud Applications too Fast and Furious for Attackers

Nane Kratzke
March 19, 2018
Programming
0
63

About being the Tortoise or the Hare? Making Cloud Applications too Fast and Furious for Attackers

Cloud applications expose - beside service endpoints - also potential or actual vulnerabilities. And attackers have several advantages on their side. They can select the weapons, the point of time and the point of attack.
Very often cloud application security engineering efforts focus to harden the fortress walls but seldom assume that attacks may be successful. So, cloud applications rely on their defensive walls but seldom attack intruders actively. Biological systems are different. They accept that defensive "walls" can be breached at several layers and therefore make use of an active and adaptive defense system to attack potential intruders - an immune system. This position paper proposes such an immune system inspired approach to ensure that even undetected intruders can be purged out of cloud applications. This makes it much harder for intruders to maintain a presence on victim systems. Evaluation experiments with popular cloud service infrastructures (Amazon Web Services, Google Compute Engine, Azure and OpenStack) showed that this could minimize the undetected acting period of intruders down to minutes.

Nane Kratzke

March 19, 2018
Tweet

More Decks by Nane Kratzke

See All by Nane Kratzke
KI aus der Cloud - Denkanstöße für Life-Sciences?
nkratzke
0
59
KI aus der Cloud
nkratzke
1
69
Pizza-as-a-Service
nkratzke
0
260
Smart Like A Fox: How clever students trick dumb automated programming assignment assessment systems
nkratzke
1
250
What is a SERVICE MESH and what it is good for?
nkratzke
2
840
Towards a Lightweight Multi-Cloud DSL for Elastic and Transferable Cloud-native Applications
nkratzke
0
65
We have the Bricks to Build Cloud-native Cathedrals - But do we have the mortar?
nkratzke
0
53
There is no impenetrable system - So, why we are just waiting to get breached?
nkratzke
0
140
About an Immune System Understanding for Cloud-native Applications . Biology Inspired Thoughts to Immunize the Cloud Forensic Trail
nkratzke
0
150

Other Decks in Programming

See All in Programming
認知負荷で考えるフロントエンドの組織体制
shibe23
0
330
Chatwork プロダクト本部 紹介資料(エンジニア向け)
chatwork_hr
0
530
第1回 AWSとGitHub勉強会 - キックオフ -
ogiwarat
0
120
テスト自動化ツールを比較してみた 導入後の課題と相性の良いテスト
tapompom
2
440
Push通知許諾率向上へのアプローチ
miyabigouji
0
850
第3回 AWSとGitHub勉強会 - GitHub Actionsを使ったCI環境の構築 -
ogiwarat
0
110
iOSエンジニアに求められる役割について
teamlab
PRO
0
130
第6回 AWSとGitHub勉強会 - AWS ECS Fargate環境の構築 -
ogiwarat
0
120
GO TechTalk #22 Reactで描くタクシーアプリ『GO』の世界
mot_techtalk
0
160
Kubernetesソースコードリーディング入門
bells17
15
2.7k
なぜ自社ではスクラムがうまくいかないのか アジャイルコーチと考える、スクラムのアンチパターン / Why Scrum doesn't work in my company?
daipresents
1
300
Dagger Hilt로 의존성 주입부터 멀티모듈화까지
fornewid
0
240

Featured

See All Featured
Imperfection Machines: The Place of Print at Facebook
scottboms
257
12k
Product Roadmaps are Hard
iamctodd
42
8.7k
Debugging Ruby Performance
tmm1
68
11k
Large-scale JavaScript Application Architecture
addyosmani
501
110k
Fontdeck: Realign not Redesign
paulrobertlloyd
74
4.6k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
351
28k
Building Effective Engineering Teams - LeadDev
addyosmani
20
930
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
239
20k
Docker and Python
trallard
31
2.3k
BBQ
matthewcrist
76
8.4k
Happy Clients
brianwarren
92
6k
Bootstrapping a Software Product
garrettdimon
PRO
299
110k

Transcript

  1. 8th International Conference on Cloud Computing and Services Science (CLOSER 2018); Funchal, Madeira, Portugal, 2018
    About being the Tortoise or
    the Hare?
    A Position Paper on Making Cloud
    Applications too Fast and Furious for Attackers
    Nane Kratzke

    View Slide

  2. The next 15 minutes are about ...
    • Some scary considerations on zero-
    day exploits
    • Moving target defense
    • The idea to (permanently) jangle
    attackers nerves
    • Some evaluation results
    • Conclusions and open issues
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    2
    Paper URL
    Presentation URL
    Speaker Deck

    View Slide

  3. How to defense against unknown
    vulnerabilities?
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    3
    Reported in January 2018. Mainly x86 microprocessors with out-of-order
    execution and branch-prediction affected since
    1995 (says Google).
    CVE-2017-5754
    CVE-2017-5715
    CVE-2017-5753

    View Slide

  4. Moving Target Defense (MTD)
    ACM Moving Target Defense Workshops 2014 - 2017
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    4
    • The static nature of current computing systems has made them easy to
    attack and harder to defend.
    • The idea of moving-target defense (MTD) is to impose the same
    asymmetric disadvantage on attackers by making systems dynamic
    (harder to explore and predict).
    • Moving target defense reduces the need for threat detection.

    View Slide

  5. We need a reactive component as well
    Biological systems are different.
    Defensive “walls” can be
    breached at several layers.
    An additional active defense
    system is needed to attack
    potential successful intruders - an
    immune system.
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    5

    View Slide

  6. We build a transferability solution ...
    Prof. Dr. rer. nat. Nane Kratzke
    Praktische Informatik und betriebliche Informationssysteme
    6
    Operate application on current provider.
    Scale cluster into prospective provider.
    Shutdown nodes on current provider.
    Cluster reschedules lost container.
    Migration finished.
    Quint, P.-C., & Kratzke, N. (2016). Overcome Vendor Lock-In by
    Integrating Already Available Container Technologies - Towards
    Transferability in Cloud Computing for SMEs. In Proceedings of CLOUD
    COMPUTING 2016 (7th. International Conference on Cloud Computing,
    GRIDS and Virtualization).
    … mainly, to avoid Vendor Lock-In:
    • Make use of elastic container
    platforms to operate elastic
    services being deployable to any
    IaaS cloud infrastructure.
    • Transfer of these services from one
    private or public cloud infrastructure
    to another at runtime.
    Kratzke, N. (2017). Smuggling Multi-Cloud Support into Cloud-native
    Applications using Elastic Container Platforms. In Proceedings of the 7th
    Int. Conf. on Cloud Computing and Services Science (CLOSER
    2017) (pp. 29–42).

    View Slide

  7. Most systems rely on their defence walls
    and just wait to be attacked
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    7
    Successfully breached node (lateral movement)

    View Slide

  8. How long can presence be maintained?
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    8
    Answer:
    Surprisingly long!

    View Slide

  9. Let us make the game more challenging
    for the attacker
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    9
    We can create a race between
    a manual (time-intensive)
    breach and a fully automatic
    (and fast) regeneration.
    Regenerated node (randomly chosen at some point in time)
    Successfully breached node (lateral movement)

    View Slide

  10. Runtime to regenerate one node
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    10
    Request a
    node
    Adjust
    Security
    Groups
    Join
    Node
    0
    100
    200
    300
    400
    500
    600
    700
    AWS OpenStack GCE Azure
    Runtimes (median values in seconds)
    Creation Secgroup Joining Termination
    Adjust
    Security
    Group
    Terminate
    Node

    View Slide

  11. Conclusion, open issues and limitations
    • The presented approach means for attackers
    that their time being „undetected“ drops from
    months down to minutes .
    • Can we reduce regenerations without
    increasing own efforts?
    • What is about exploits/attacks that are
    adaptable to bio-inspired systems?
    • How to protect the regeneration mechanism
    against attackers?
    • Biology inspired solutions come with
    downsides like
    • fever (too many nodes in regeneration at the same
    time, system runs hot)
    • auto-immune disease (healthy nodes are attacked
    too often)
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    11

    View Slide

  12. Acknowledgement
    • Rabbit, Tortoise: Pixabay (CC0 Public Domain)
    • Fortress: Pixabay (CC0 Public Domain)
    • Bowman: Pixabay (CC0 Public Domain)
    • Definition: Pixabay (CC0 Public Domain, PDPics)
    • Railway: Pixabay (CC0 Public Domain, Fotoworkshop4You)
    • Air Transport: Pixabay (CC0 Public Domain, WikiImages)
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    12
    Picture Reference
    This research is partly funded by German Federal Ministry of
    Education and Research (13FH021PX4).
    Paper URL
    Presentation URL
    Speaker Deck

    View Slide

  13. About
    Prof. Dr. rer. nat. Nane Kratzke
    Computer Science and Business Information Systems
    13
    Nane Kratzke
    CoSA: http://cosa.fh-luebeck.de/en/contact/people/n-kratzke
    Blog: http://www.nkode.io
    Twitter: @NaneKratzke
    GooglePlus: +NaneKratzke
    LinkedIn: https://de.linkedin.com/in/nanekratzke
    GitHub: https://github.com/nkratzke
    ResearchGate: https://www.researchgate.net/profile/Nane_Kratzke
    SlideShare: http://de.slideshare.net/i21aneka

    View Slide