an mtd based self adaptive resilience approach for cloud
play

AN MTD-BASED SELF-ADAPTIVE RESILIENCE APPROACH FOR CLOUD SYSTEMS - PowerPoint PPT Presentation

Mar 28, 2024 •145 likes •520 views

AN MTD-BASED SELF-ADAPTIVE RESILIENCE APPROACH FOR CLOUD SYSTEMS Miguel Villarreal-Vasquez 1 , Bharat Bhargava 1 , Pelin Angin 2 , Noor Ahmed 3 , Daniel Goodwin 4 , Jason Kobes 4 , Kory Brin 4 1 Department of Computer Science, Purdue University 2

  1. AN MTD-BASED SELF-ADAPTIVE RESILIENCE APPROACH FOR CLOUD SYSTEMS Miguel Villarreal-Vasquez 1 , Bharat Bhargava 1 , Pelin Angin 2 , Noor Ahmed 3 , Daniel Goodwin 4 , Jason Kobes 4 , Kory Brin 4 1 Department of Computer Science, Purdue University 2 Department of Computer Engineering, Middle East Technical University 3 Air Force Research Laboratory 4 Northrop Grumman Corporation Acknowledgments : This work was funded by the Northrop Grumman Cybersecurity Research Consortium. The prototype was implemented in collaboration with Northrop Grumman and internally presented to them in April 2017. The authors would also like to thank Dr. Leszek Lilien and Dr.Weichao Wang for their valuable comments.

  2. MOTIVATION Attack Surface 1

  3. MOTIVATION Attack Surface Replication approaches in cloud • computing increase the attack surface • We need resilient/self-healing systems that can accurately detect anomalies and dynamically adapt themselves to keep performing mission-critical functions even under attacks and failures. 2

  4. RESEARCH QUESTION Is it possible to construct a generic attack-resilient • framework for distributed cloud systems with a combination of dynamic network configuration and continuous replacement of virtual machines? 3

  5. MOVING TARGET DEFENSE (MTD) Attack Vectors Resilient Approaches - Moving Target Defense (MTD) - Data - Proactive Restore/C2 - Code - Least Privilege - Infrastructure Enforcement - Communications - Trust Zone Segmentation - People - Identity Attribution - Encryption - Root Trust 4

  6. MOVING TARGET DEFENSE (MTD) • The proposed Moving Target Defense (MTD) solution introduces resiliency and adaptability to the system through live monitoring, which transforms systems to be able to adapt and self- heal when ongoing attacks are detected 5

  7. MOVING TARGET DEFENSE (MTD) • Adversaries have an asymmetric advantage : They have the time to study a system, identify its vulnerabilities, and choose the time and place of attack to gain the maximum benefit • The idea of moving-target defense (MTD): Imposing the same asymmetric disadvantage on attackers by making systems dynamic and therefore harder to explore and predict Threat Avoidance Techniques! 6

  8. STATE OF THE ART AND LIMITATIONS DIVERSIFICATION/RANDOMIZATION REPLICATION/REDUNDANCY Fault-Tolerance Systems Fault-Tolerance Systems - Solution : MTD - Solution : Replication/ - Examples : ASLR [9], Redundancy: NVersion [10] & IP- - Examples : Quorum, Chain Hopping [11] - Limitation : Gives fault - Limitation : Do not protect resiliency but increases the entire host attack surface at application level (common code base) 7

  9. STATE OF THE ART AND LIMITATIONS • The traditional defensive security strategy for distributed systems is to prevent attackers from gaining control of the system using well established techniques: Replication/Redundancy, Encryption, etc. § Limitation : Given sufficient time and resources, existing defensive methods can be defeated 8

  10. STATE OF THE ART AND LIMITATIONS • The state of the art of MTD solutions focus on randomization and diversification in particular layers of the system § Limitation : Do not protect the entire host 9

  11. PROPOSED APPROACH • “Stay one-step ahead” of sophisticated attack • Protect the entire stack through dynamic interval-based spatial randomization • Avoid threats in-time intervals rather than defending the entire runtime of systems through Mobility and Direction • System will start secure, stay secure and return secure • Increase agility, anti-fragility and adaptability of the system • Unified generic MTD framework that enables reasoning about behavior of deployed systems on cloud platforms 10

  12. OBJECTIVES OF THE MTD SOLUTION Aims to reduce the need to continuously fight • against attacks by decreasing the gain-loss balance perception of attackers. Narrows the exposure window of a node to • attacks , which increases the cost of attacks on a system and lowers the likelihood of success and the perceived benefit of compromising it. 11

  13. OBJECTIVES OF THE MTD SOLUTION • The reduction in the vulnerability window of nodes is mainly achieved through three steps : • Partitioning the runtime execution of nodes in time intervals Allowing nodes to run only with a predefined lifespan (as • low as a minute) on heterogeneous platforms (i.e. different OSs) • Proactively monitoring their runtime below the OS 12

  14. BENEFITS OF THE PROPOSED SOLUTION • State of the Art System View: Replica 1 Replica 2 Replica 3 Application OS Randomization Space At a given time only Network some layers of the stack (Application, Application OS or Network) are OS checked/ protected Network Application OS Network 1 2 3 n Sate Verification Time Intervals (< 1 sec) 13

  15. BENEFITS OF THE PROPOSED SOLUTION • Proposed Solution System View: Replica 1 Replica 2 Replica 3 Application OS Randomization Space At a given time all Network layers of the stack (Application, OS or Application Network) are OS checked/protected. Network Application OS Network 1 2 3 n Sate Verification Time Intervals (< 1 sec) 14

  16. APPROACH OVERVIEW 15

  17. MTD ARCHITECUTRE Components: (1) Virtual Reincarnation (ViRA) (3) SDN Network Dynamics (2) Proactive Monitoring (4) Systems States and Application Runtime 16

  18. MTD ARCHITECUTRE • The MTD framework consists of the following four components: • Virtual Machine Reincarnation (ViRA) • Proactive Monitoring • SDN Network Dynamics • Systems States and Application Runtime • The framework will protect the whole stack; not only particular layers 17

  19. APPROACH DETAILS Nodes run a distributed application on a given platform for a • controlled period of time The running time is chosen in a way that successful ongoing • attacks become ineffective • The new fresh machine will integrate to the system and continue running the application after its data is updated SDN Network 18

  20. APPROACH DETAILS Nodes run a distributed application on a given platform for a • controlled period of time The running time is chosen in a way that successful ongoing • attacks become ineffective • The new fresh machine will integrate to the system and continue running the application after its data is updated SDN Network 19

  21. VIRTUAL REINCARNATION • Randomization and diversification technique where nodes (virtual machines) running a distributed application vanish and reappear on a different virtual state with different guest OS, Host OS, hypervisor, and hardware . Virtualized Improve Improve Environment Resiliency Anti-Fragility 20

  22. CREATION OF REPLICAS How do we create replicas? PrimaryVM runs as no failures are detected. • • AlternateVM takes place when a failure occurs Acceptance tests are adjusted independently to guarantee • system operation Alternate learn from Primary and become more robust to • failures/attacks experimented by primary PRIMARY ALTERNATE OK OK FAIL FAIL Acceptance Test Acceptance Test 21

  23. CREATION OF REPLICAS Challenges: Reduce downtime when Primary is replaced by Alternate and • vice versa Keep the state of the machine (either Primary or Alternate) • after the replacement to achieve uninterrupted operation • Keeping the state (stateful reincarnation) allows the system to be application-agnostic PRIMARY ALTERNATE OK OK FAIL FAIL Acceptance Test Acceptance Test 22

  24. CREATION OF REPLICAS Stateful Reincarnation Ideas: VM2 VM3 VM1 Quorum D’ D’’ D T T’’ T’ VM4 D’’’ D*: Synchronized Data T*: Different version of T ext T’’’ VM4 replaces VM1 23

  25. CREATION OF REPLICAS Stateful Reincarnation Ideas: • Create different versions of binaries • The original code is kept and set with read-only permission so that it can be used as part of the reference to the new locations of the blocks in the re- randomized version. • We avoid identifying and updating code position pointers in each randomization process by keeping a table of trampolines as shown in (b). Each block is located at a fixed offset (i.e., off_c ) with respect to the trampoline table. The pointers (in the original code • space) are dynamically redirected to its respective address in the code variant when it is de-referenced (a) (b) Z. Wang, C. Wu, J. Li, Y. Lai, X. Zhang, W. Hsu and Y. Cheng. ReRANZ: A Ligh- Weight Virtual Machine to Mitigate Memory Disclosure Attacks. To appear 24 in VEE2017.

  26. VIRTUAL REINCARNATION “Active machines are replaced by new ones with a totally new image” https://www.dropbox.com/s/fqjh75su0p908ic/NGCRC-2017-Bhargava-DEMO2.mp4?dl=0 25

  27. PROACTIVE MONITORING • Operates at the hypervisor level • Helps for performing node reincarnation effectively rather than blindly • Based on Virtual Machine Introspection (VMI) • Proactively gathers live memory data (at host OS) in intervals and reacts if anomalous behavior is detected • Use libvmi library for introspection with negligible performance overhead • When application is hijacked, address offsets show new entries for injected code • When application is terminated and a new malicious one created, it could end up with a different process ID or memory address offset 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Win Big with Transformational Cloud Strategies and IT Resilience Cloud based data protection

Win Big with Transformational Cloud Strategies and IT Resilience Cloud based data protection

Conference 2018 Conference 2018 Win Big with Transformational Cloud Strategies and IT Resilience Cloud based data protection Long View Systems James Charter, Chief Architect Zerto Lance White, Account Executive &amp; Special Guest Agenda

181 views • 14 slides
Resilience Theory &amp; Strengths-based approach Over recent years - a shift in research and

Resilience Theory &amp; Strengths-based approach Over recent years - a shift in research and

Resilience Theory &amp; Strengths-based approach Over recent years - a shift in research and service delivery from a deficits-based approach to an approach that highlights strengths, resources and assets that may enable positive outcomes.

481 views • 12 slides
Honey, I shrunk the database! Resilience and recoverability in Cloud Native services JEFFREY

Honey, I shrunk the database! Resilience and recoverability in Cloud Native services JEFFREY

Honey, I shrunk the database! Resilience and recoverability in Cloud Native services JEFFREY FARBER SIDNEY SHEK Cloud infrastructure = reliable services right? SUPER RESILIENT CLOUD-BASED ARCHITECTURE Canary Progressive Rollouts

1.11k views • 93 slides
Cell- -based Architecture for based Architecture for Cell Adaptive Wiring Panels: A First

Cell- -based Architecture for based Architecture for Cell Adaptive Wiring Panels: A First

Cell- -based Architecture for based Architecture for Cell Adaptive Wiring Panels: A First Adaptive Wiring Panels: A First Approach Approach Victor Murray 1 1 , Daniel Llamocca 1 1 , Yuebing Jiang 1 1 , Marios Pattichis 1 1 James Lyke 2 2 ,

573 views • 38 slides
NAVIGATING MANGROVE RESILIENCE THROUGH THE ECOSYSTEM BASED ADAPTATION APPROACH: LESSONS FROM

NAVIGATING MANGROVE RESILIENCE THROUGH THE ECOSYSTEM BASED ADAPTATION APPROACH: LESSONS FROM

NAVIGATING MANGROVE RESILIENCE THROUGH THE ECOSYSTEM BASED ADAPTATION APPROACH: LESSONS FROM BANGLADESH Paramesh Nandy And Ronju Ahammad Community Based Adaptation to Climate Change through Coastal Afforestation (CBACC-CF) Project in

362 views • 17 slides
A FRAMEWORK OF ADAPTIVE INTERACTION SUPPORT IN CLOUD-BASED INTERNET OF THINGS (IOT) ENVIRONMENT

A FRAMEWORK OF ADAPTIVE INTERACTION SUPPORT IN CLOUD-BASED INTERNET OF THINGS (IOT) ENVIRONMENT

A FRAMEWORK OF ADAPTIVE INTERACTION SUPPORT IN CLOUD-BASED INTERNET OF THINGS (IOT) ENVIRONMENT Noura Alhakbani, Mohammed Mehedi Hassan, M. Anwar Hossain, and Mohammed Alnuem Outline Abstract Introduction Literature Review

411 views • 28 slides
A Resource Allocation Controller for Cloud-based Adaptive Video Streaming Luca De Cicco , Saverio

A Resource Allocation Controller for Cloud-based Adaptive Video Streaming Luca De Cicco , Saverio

1/16 A Resource Allocation Controller for Cloud-based Adaptive Video Streaming Luca De Cicco , Saverio Mascolo, Dario Calamita Politecnico di Bari, Dipartimento di Ingegneria Elettrica e dellInformazione MCN 2013 - Budapest, Hungary 13 June

564 views • 27 slides
DC-DRF : Adaptive Multi- Resource Sharing at Public Cloud Scale ACM Symposium on Cloud

DC-DRF : Adaptive Multi- Resource Sharing at Public Cloud Scale ACM Symposium on Cloud

DC-DRF : Adaptive Multi- Resource Sharing at Public Cloud Scale ACM Symposium on Cloud Computing 2018 Ian A Kash, Greg OShea, Stavros Volos 1 Public Cloud DC hosting enterprise customers O(100K) servers, mostly small tenants 2

1.21k views • 87 slides
Content An adaptive statistical approach to flutter detection Introduction Subspace-based

Content An adaptive statistical approach to flutter detection Introduction Subspace-based

Content An adaptive statistical approach to flutter detection Introduction Subspace-based residual for modal monitoring Rafik Zouari, Laurent Mevel, Mich` ele Basseville IRISA (INRIA &amp; CNRS), Rennes, France CUSUM test for monitoring a

274 views • 4 slides
Tree-Based Consistency Approach for Cloud Databases Md. Ashfakul Islam Susan V. Vrbsky

Tree-Based Consistency Approach for Cloud Databases Md. Ashfakul Islam Susan V. Vrbsky

Tree-Based Consistency Approach for Cloud Databases Md. Ashfakul Islam Susan V. Vrbsky Department of Computer Science University of Alabama What is a cloud? Definition [Abadi 2009] shift of computer processing, storage, and software

466 views • 21 slides
CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic

CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic

CAFE: A Virtualization-Based Approach to Protecting Sensitive Cloud Application Logic Confidentiality Chung Hwan Kim Sungjin Park Junghwan Rhee Taisook Han Dongyan Xu Jong-jin Won Purdue University The Attached NEC Laboratories KAIST

305 views • 29 slides
Cloud based systems that can help you grow your business Some of the cloud based tools we use at

Cloud based systems that can help you grow your business Some of the cloud based tools we use at

Cloud based systems that can help you grow your business Some of the cloud based tools we use at Business Connected Dashlane Crunchboards Trello icloud Adobe Creative Cloud Proposify Receipt Bank Maxmail Dropbox Go to Meeting Mailchimp

328 views • 21 slides
Ontology-based approach for unsupervised and adaptive focused crawling Thomas HASSAN, Christophe

Ontology-based approach for unsupervised and adaptive focused crawling Thomas HASSAN, Christophe

Ontology-based approach for unsupervised and adaptive focused crawling Thomas HASSAN, Christophe CRUZ, Aurlie Bertaux thomas.hassan@u-bourgogne.fr Le2i FRE2005, CNRS, Arts et Mtiers, Univ. Bourgogne Franche-Comt Dijon, France Outline

465 views • 24 slides
Mental Hea ealth Network: : A Dynamic Approach to St Strengthening th the Resilience of f

Mental Hea ealth Network: : A Dynamic Approach to St Strengthening th the Resilience of f

1 Integratin In ing Evid idence-Based Practic ice in into an Early Chil ildhood Mental Hea ealth Network: : A Dynamic Approach to St Strengthening th the Resilience of f Young Chil ildren and Families nd Annual Research &amp; Pol 32

398 views • 16 slides
From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov

From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov

From passivity-based adaptive control to LMI tuned adaptive control or how Alexander Fradkov convinced me that direct adaptive control can be robust Dimitri Peaucelle FRontiers of ADaptive and nonlinear CONtrol (FRADCON 2018) ECC Workshop,

628 views • 19 slides
Welcome Strengthening NGO Resilience during Covid-19 Adaptive Project Planning 1 Logistics

Welcome Strengthening NGO Resilience during Covid-19 Adaptive Project Planning 1 Logistics

Welcome Strengthening NGO Resilience during Covid-19 Adaptive Project Planning 1 Logistics You are muted , so you will need to unmute yourself if you want to speak The format of the webinar will be for the panel to first present and

575 views • 19 slides
Implementation and Application Elizabeth A. Cudney, Ph.D. Missouri University of Science &amp;

Implementation and Application Elizabeth A. Cudney, Ph.D. Missouri University of Science &amp;

Total Productive Maintenance: Implementation and Application Elizabeth A. Cudney, Ph.D. Missouri University of Science &amp; Technology 2016 ASQ Fall Conference Traditional Approach to Maintenance Maintenance Department Manufacturing

782 views • 24 slides
6/18/2015 Biosciences eastern and central Africa International Livestock Research Institute

6/18/2015 Biosciences eastern and central Africa International Livestock Research Institute

6/18/2015 Biosciences eastern and central Africa International Livestock Research Institute (BecA ILRI) Hub Mobilizing biosciences for Africas development LABORA LABORATORY MANA MANAGEM GEMENT NT AND AND EQUIPMENT O EQ OPERA

1.06k views • 4 slides
Debt Investor Presentation June 2011 Disclaimer By attending the meeting where this presentation

Debt Investor Presentation June 2011 Disclaimer By attending the meeting where this presentation

Debt Investor Presentation June 2011 Disclaimer By attending the meeting where this presentation is made, you agree to be bound by the following limitations. The information contained in this document has not been independently verified and no

590 views • 58 slides
Towards a new discourse in European sustainable mobility. Spoorzone Delft as a good practice

Towards a new discourse in European sustainable mobility. Spoorzone Delft as a good practice

Towards a new discourse in European sustainable mobility. Spoorzone Delft as a good practice Patrick van Geel Jan-Kees Verrest 10 september 2014 2 Treaty of Maastricht (1992) Treaty of Maastricht (1992): introduction of social and economic

518 views • 30 slides
Why a CMMS? Maintenance exists to ensure that assets and equipment are available when needed,

Why a CMMS? Maintenance exists to ensure that assets and equipment are available when needed,

Why a CMMS? Maintenance exists to ensure that assets and equipment are available when needed, and are running safely and cost efgectively. Why use a CMMS? Over half of maintenance is still reactive, which 55% costs three to nine times more

526 views • 14 slides
2015 SNS AAC Close-out March 24-26, 2015 ORNL is managed by UT-Battelle for the US Department

2015 SNS AAC Close-out March 24-26, 2015 ORNL is managed by UT-Battelle for the US Department

2015 SNS AAC Close-out March 24-26, 2015 ORNL is managed by UT-Battelle for the US Department of Energy Ion Source &amp; Integrated test stand facility Observations and Comments Ion source reliability has been very good. Antenna

405 views • 26 slides
Opened in 2011 Independent RTO Secure facilities Prove innovative manufacturing

Opened in 2011 Independent RTO Secure facilities Prove innovative manufacturing

Opened in 2011 Independent RTO Secure facilities Prove innovative manufacturing ideas Manufacturing system solutions Training MTC &amp; HVM CATAPULT The High Value Manufacturing (HVM) Catapult is the catalyst for the future

634 views • 37 slides
Multidisciplinary Senior Design (MSD I) P18718: Detailed Design Review Nick Campagnola Matt

Multidisciplinary Senior Design (MSD I) P18718: Detailed Design Review Nick Campagnola Matt

Multidisciplinary Senior Design (MSD I) P18718: Detailed Design Review Nick Campagnola Matt Eisner Ryan Leeson Kyle Leung Alec Meta Agenda Background Problem Statement Engineering/Customer Requirements Review Design Review

390 views • 21 slides

More recommend