Escape the Fake: Introducing Simulated Container-Escapes for Honeypots
This work addresses network security for cloud computing by proposing an incremental improvement to honeypot techniques.
The paper tackles the problem of enhancing honeypot deception in cloud security by introducing simulated container escapes, a technique that mimics legitimate targets to study attacker methods in container-based environments.
In the field of network security, the concept of honeypots is well established in research as well as in production. Honeypots are used to imitate a legitimate target on the network and to raise an alert on any interaction. This does not only help learning about a breach, but also allows researchers to study the techniques of an attacker. With the rise of cloud computing, container-based virtualization gained popularity for application deployment. This paper investigates the possibilities of container-based honeypots and introduces the concept of simulating container escapes as a deception technique.