University of Twente Student Theses
HoneyKube : designing a honeypot using microservices-based architecture
Gupta, C. (2021) HoneyKube : designing a honeypot using microservices-based architecture.
PDF
1MB |
Abstract: | Since before the pandemic, there has been a gradual rise in the dependency on online applications. Examples include e-commerce, social media and digital conferencing. This dependence has become more pronounced during the pandemic. The user demands from these online platforms also rise with this increased dependence, which requires these applications to be agile and continuously evolve. The traditional monolithic systems do not enable this agility and make it challenging to meet these rapidly changing demands. Microservices-based architecture comes to the rescue by providing the required flexibility and agility. As we see an increase in the popularity of microservices, there is also a rise in cyberattacks targeting these environments. Because of the differences between the monolithic and microservices architectures, the traditional security solutions are not as effective in the new architecture. We propose a novel honeypot design with an innovative monitoring setup to facilitate data collection from cyberattacks in a system using a microservices architecture. We deploy this honeypot with a real-world application on top to attract malicious users. The data collection process with this honeypot involves two experiments: an open setting, where we expose the honeypot to the internet, and a controlled one, where we open the honeypot to a limited network. We collect approximately 850 GB of data containing the attackers' interactions with the honeypot in the two experiment settings. We evaluate the fingerprintability of the honeypot using a state-of-the-art reconnaissance tool. Moreover, we show the differences in the attack behaviour when targeting a microservices-based architecture and provide the data to further research in understanding these differences. |
Item Type: | Essay (Master) |
Faculty: | EEMCS: Electrical Engineering, Mathematics and Computer Science |
Subject: | 54 computer science |
Programme: | Computer Science MSc (60300) |
Link to this item: | https://purl.utwente.nl/essays/88323 |
Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Repository Staff Only: item control page