loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Stephen Jacob ; Yuansong Qiao and Brian Lee

Affiliation: Department of Computer and Software Engineering, Athlone Institute of Technology, Dublin Rd., Athlone, Ireland

Keyword(s): Microservices, Cyber Security, Distributed Tracing, Anomaly Detection.

Abstract: Microservices are emerging as the dominant software design architecture for many different applications, and cyber attacks are targeting more software organisations every day. Newer techniques for detecting cyber intrusions against such applications are in high demand. Application functionality that is executed within a microservices application can be monitored and logged using distributed tracing. Distributed tracing is normally used for performance management of microservices applications. In this paper, we used distributed tracing for detecting cyber-security attacks. Each microservice call, or sequence of calls, executed in response to a request by an end user of the application is logged as a trace. Anomaly detection is a means of detecting irregular or unusual events or patterns in a data set that occur to a greater or a lesser degree than the majority of the data. In this paper, we present initial work that identifies anomalous distributions of traces. A frequency distributio n of traces is obtained from normal data and traffic is identified as an anomaly candidate if it differs sufficiently from the base distribution. This approach is evaluated using a password guessing attack. In addition, we briefly discuss a NoSQL injection attack which we argue is difficult to detect using trace data. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.90.187.11

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Jacob, S.; Qiao, Y. and Lee, B. (2021). Detecting Cyber Security Attacks against a Microservices Application using Distributed Tracing. In Proceedings of the 7th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-491-6; ISSN 2184-4356, SciTePress, pages 588-595. DOI: 10.5220/0010308905880595

@conference{icissp21,
author={Stephen Jacob. and Yuansong Qiao. and Brian Lee.},
title={Detecting Cyber Security Attacks against a Microservices Application using Distributed Tracing},
booktitle={Proceedings of the 7th International Conference on Information Systems Security and Privacy - ICISSP},
year={2021},
pages={588-595},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010308905880595},
isbn={978-989-758-491-6},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 7th International Conference on Information Systems Security and Privacy - ICISSP
TI - Detecting Cyber Security Attacks against a Microservices Application using Distributed Tracing
SN - 978-989-758-491-6
IS - 2184-4356
AU - Jacob, S.
AU - Qiao, Y.
AU - Lee, B.
PY - 2021
SP - 588
EP - 595
DO - 10.5220/0010308905880595
PB - SciTePress