@inproceedings{f08e5f5fda1045ba8ff148456a5defab,
title = "Toward Smart Moving Target Defense for Linux Container Resiliency",
abstract = "This paper presents ESCAPE, an informed moving target defense mechanism for cloud containers. ESCAPE models the interaction between attackers and their target containers as a 'predator searching for a prey' search game. Live migration of Linux-containers (prey) is used to avoid attacks (predator) and failures. The entire process is guided by a novel host-based behavior-monitoring system that seamlessly monitors containers for indications of intrusions and attacks. To evaluate ESCAPE effectiveness, we simulated the attack avoidance process based on a mathematical model mimicking the prey-vs-predator search game. Simulation results show high container survival probabilities with minimal added overhead.",
keywords = "Cloud Security, Linux containers, Live Migration",
author = "Mohamed Azab and Bassem Mokhtar and Abed, \{Amr S.\} and Mohamed Eltoweissy",
note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; 41st IEEE Conference on Local Computer Networks, LCN 2016 ; Conference date: 07-11-2016 Through 10-11-2016",
year = "2016",
month = dec,
day = "22",
doi = "10.1109/LCN.2016.106",
language = "English",
series = "Proceedings - Conference on Local Computer Networks, LCN",
publisher = "IEEE Computer Society",
pages = "619--622",
booktitle = "Proceedings - 2016 IEEE 41st Conference on Local Computer Networks, LCN 2016",
}