Amin Sadiq and Hassan Jamil Syed and Asad Ahmed Ansari and Ashraf Osman Ibrahim Elsayed and Manar Alohaly and Muna Elsadig (2023) Detection of Denial of service attack in cloud based Kubernetes using eBPF. Applied Sciences, 13. pp. 1-15.
![[img]](https://eprints.ums.edu.my/style/images/fileicons/text.png) |
Text
ABSTRACT.pdf Download (41kB) |
|
Text
FULL TEXT.pdf Restricted to Registered users only Download (4MB) | Request a copy |
Abstract
Kubernetes is an orchestration tool that runs and manages container-based workloads. It works as a collection of different virtual or physical servers that support multiple storage capacities, provide network functionalities, and keep all containerized applications active in a desired state. It also provides an increasing fleet of different facilities, known as microservices. However, Kubernetes’ scalability has led to a complex network structure with an increased attack vector. Attackers can launch a Denial of service (DoS) attack against servers/machines in Kubernetes by producing fake traffic load, for instance. DoS or Distributed Denial of service (DDoS) attacks are malicious attempts to disrupt a targeted service by flooding the target’s service with network packets. Constant observation of the network traffic is extremely important for the early detection of such attacks. Extended Berkeley Packet Filter (eBPF) and eXpress Datapath (XDP) are advanced technologies in the Linux kernel that perform high-speed packet processing. In the case of Kubernetes, eBPF and XDP can be used to protect against DDoS attacks by enabling fast and efficient network security policies. For example, XDP can be used to filter out traffic that is not authorized to access the Kubernetes cluster, while eBPF can be used to monitor network traffic for signs of DDoS attacks, such as excessive traffic from a single source. In this research, we utilize eBPF and XDP to build a detection and observation mechanism to filter out malicious content and mitigate a Denial of Service attack on Kubernetes
| Item Type: | Article |
|---|---|
| Keyword: | Denial of service, DoS, Distributed Denial of service, DDoS, Attack, Kubernetes, Extended Berkeley Packet Filter, eBPF, EXpress Datapath, XDP |
| Subjects: | Q Science > QA Mathematics > QA1-939 Mathematics > QA71-90 Instruments and machines > QA75.5-76.95 Electronic computers. Computer science T Technology > T Technology (General) > T1-995 Technology (General) > T10.5-11.9 Communication of technical information |
| Department: | FACULTY > Faculty of Computing and Informatics |
| Depositing User: | SITI AZIZAH BINTI IDRIS - |
| Date Deposited: | 10 Dec 2024 14:58 |
| Last Modified: | 10 Dec 2024 14:58 |
| URI: | https://eprints.ums.edu.my/id/eprint/42207 |
Actions (login required)
 |
View Item |