Main Image
Volume 299 - The 7th International Conference on Computer Engineering and Networks (CENet2017) - Session I - Machine Learning
RELOCATE: A Container Based Moving Target Defense Approach
R. Huang,* H. Zhang, Y. Liu, S. Zhou
*corresponding author
Full text: pdf
Pre-published on: 2017-07-17 11:56:25
Published on: 2017-09-06 14:01:04
Abstract
In order to cope with border information leakage problem in cloud services, we presented RELOCATE,a moving target defense approach. RELOCATE chose a lightweight operating system virtualization technology named Docker to manage the containers in physical hosts. Docker performs well for tenants’ services because of fast initialization and small footprint. Thus, we used Docker clusters to orchestrate the tenants' services. Additionally, we proposed a novel dynamic relocation strategy to mitigate attacks from malicious neighbors by using themoving target defense thought. Lastly, we conducted a simulation experiment in our testbed. Result shows that RELOCATE is efficient and effective to defense border information leakage attacks
Open Access
Creative Commons LicenseCopyright owned by the author(s) under the term of the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.