Securing microservices against password guess attacks using hardware performance counters

Date

2022-09

Journal Title

Journal ISSN

Volume Title

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Abstract

Modern customer-facing applications need to be easy to use, localizable, and to scale out to serve large customer bases. Microservice architectures have the potential to decentralize functionality, improve flexibility, and provide faster time to market of incremental changes. However, applications implemented as microservices also have a larger surface area, which may make them more prone to cyber attacks. Modern operating systems provide performance counters which are tamper-resistant, and can be used to track the run-time behavior of applications. In this work, we aim to detect a password guess attack on microservice using performance counter data. Our approach consists of modelling behavior of normal and attack user login requests, identification of key performance counters that effectively distinguish these requests and developing a machine learning model that classifies unknown login requests. A fully connected neural network-based classification model gave us 98.3% test accuracy in detecting the attacks with a false negative rate of 1.6%.

Description

Scholarly article

Keywords

microservices, modern operating systems, password guess attack

Citation

Kadiyala, S. P., Li, X., Lee, W., & Catlin, A. (2022, September). Securing microservices against password guess attacks using hardware performance counters [Conference session?]. In 2022 IEEE 35th International System-on-Chip Conference (SOCC) (pp. 1-6). Belfast, UK. http://doi.org/10.1109/SOCC56010.2022.9908109