Analysis of Container Isolation Level During Denial-of-Service Attacks in Cloud Computing
Abstract
Denial-of-Service (DoS) attacks aim to disrupt the availability of applications for legitimate users. In cloud computing environments like Kubernetes, such attacks can be harmful without proper isolation between applications. This study examines the isolation between containers in Kubernetes. Experiments revealed that metrics of one container were impacted by an attack on another within the same infrastructure. The findings suggest inadequate isolation between containers.References
Felter, W. et al. (2015). An updated performance comparison of virtual machines and linux containers. In 2015 IEEE international symposium on performance analysis of systems and software (ISPASS), pages 171–172. IEEE.
Jiqing, C. (2020). I/o performance optimization analysis of container on cloud platform. In 2020 IEEE International Conference on Power, Intelligent Computing and Systems (ICPICS), pages 84–86.
Liu, G. et al. (2020). Microservices: architecture, container, and challenges. In 2020 IEEE 20th International Conference on Software Quality, Reliability and Security Companion (QRS-C), pages 629–635.
Marques, G. et al. (2024). Proactive resource management for cloud of services environments. Future Generation Computer Systems, 150:90–102.
Martino, B. et al. (2017). Lxc and dockers: Migrating osa software on linux containers. page 073.
Pelloso, M. et al. (2018). Um sistema autoadaptável para predição de ataques ddos fundado na teoria da metaestabilidade. In Anais do XXXVI SBRC, pages 726–739, Porto Alegre, RS, Brasil. SBC.
Perveez, S. H. (2020). Understanding kubernetes architecture and its use cases. [link]. Acessado em 2023-05-29.
Prometheus (2015). Overview. [link]. Acessado: 27-03-2024.
Shah, J. and Dubaria, D. (2019). Building modern clouds: Using docker, kubernetes google cloud platform. In 2019 IEEE 9th Annual Computing and Communication Workshop and Conference (CCWC), pages 0184–0189.
Zhao, B. et al. (2021). Research on container-oriented isolation control technology. In Journal of Physics: Conference Series, volume 1871, page 012016. IOP Publishing.
Jiqing, C. (2020). I/o performance optimization analysis of container on cloud platform. In 2020 IEEE International Conference on Power, Intelligent Computing and Systems (ICPICS), pages 84–86.
Liu, G. et al. (2020). Microservices: architecture, container, and challenges. In 2020 IEEE 20th International Conference on Software Quality, Reliability and Security Companion (QRS-C), pages 629–635.
Marques, G. et al. (2024). Proactive resource management for cloud of services environments. Future Generation Computer Systems, 150:90–102.
Martino, B. et al. (2017). Lxc and dockers: Migrating osa software on linux containers. page 073.
Pelloso, M. et al. (2018). Um sistema autoadaptável para predição de ataques ddos fundado na teoria da metaestabilidade. In Anais do XXXVI SBRC, pages 726–739, Porto Alegre, RS, Brasil. SBC.
Perveez, S. H. (2020). Understanding kubernetes architecture and its use cases. [link]. Acessado em 2023-05-29.
Prometheus (2015). Overview. [link]. Acessado: 27-03-2024.
Shah, J. and Dubaria, D. (2019). Building modern clouds: Using docker, kubernetes google cloud platform. In 2019 IEEE 9th Annual Computing and Communication Workshop and Conference (CCWC), pages 0184–0189.
Zhao, B. et al. (2021). Research on container-oriented isolation control technology. In Journal of Physics: Conference Series, volume 1871, page 012016. IOP Publishing.
Published
2024-05-20
How to Cite
ANDRADE, João Batista; CRUZ, Emanuel Ávila; CORRÊA, João Henrique.
Analysis of Container Isolation Level During Denial-of-Service Attacks in Cloud Computing. In: WORKSHOP ON SCIENTIFIC INITIATION AND GRADUATION - BRAZILIAN SYMPOSIUM ON COMPUTER NETWORKS AND DISTRIBUTED SYSTEMS (SBRC), 42. , 2024, Niterói/RJ.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2024
.
p. 217-224.
ISSN 2177-9384.
DOI: https://doi.org/10.5753/sbrc_estendido.2024.3301.
