Welcome!

Microservices Expo Authors: Elizabeth White, Liz McMillan, Gopala Krishna Behara, Sridhar Chalasani, Tirumala Khandrika

Related Topics: Microservices Expo, Industrial IoT, Agile Computing, Cloud Security

Microservices Expo: Blog Feed Post

Load Testing to Detect Advanced Persistent Threats

What is an Advanced Persistent Threat?

I’ve written before about how capacity planning and load testing tools can help companies prepare for a Distributed Denial of Service (DDoS) attack, but we’ve begun to see a new class of attacks emerge, called Advanced Persistent Threats (APT), whose aim is much more sinister than a slow response time or “page not found” error.

What is an Advanced Persistent Threat?
The intentions behind APT are all about espionage — not just state-sponsored espionage but also extensive and well-organized industrial espionage. APT is not about any particular technology or technique. The actual attack can range from social engineering, viruses and trojans, network sniffing, and even brute-force attacks. What makes an APT attack new and different is that it is perpetrated by well-financed organizations that have a specific goal to achieve. While the ordinary hacker will simply look for the softest target, an APT will often target a specific company and try every means necessary to achieve its goal. The attacks are advanced, they are persistent, and they are definitely threats.

If DDoS is like having picketers standing in front of your building, preventing people from conducting normal business, then APT is more like having ninjas slip into your CEO’s office to steal the plans for a hot new product so they can sell it to your competitors.

What Can You Do to Stop It?

As with DDoS, companies should have contingency plans in place for detecting and dealing with an APT attack. As ComputerWeekly reported (emphasis mine):

RSA’s OTMS group has seen evidence that no organisation can consider itself immune from advanced cyber attacks. All organisations should assume their networks are infected and have a well-tested plan in place to follow when systems are breached.

I used to be on the IT side, so I know from personal experience the difference between having a technology or a process in place and knowing how it will work under real-world conditions. It is important not only to be able to detect an attack, but to also have a contingency plan in place for responding to an attack.

Load testing technology enables you to reproduce some of the threats you face and target certain areas to make sure that your systems can manage those kinds of attacks. This is similar to what we’re capable of doing in simulating a DDoS attack, but it’s also very specific because we can script for specific users and have them do specific functions.

For example, imagine that one APT attack might be, instead of sending a million users at one time as with a DDoS attack, sending a million users over a course of a few days, attempting to log in with a million different accounts. With load testing, you have the ability to do just that: launch a million users from around the world, all attempting to log in to your site using just a series of user names and passwords. Can your system detect such an attempt and recognize it as a coordinated attack? Run the numbers to see whether you were able to detect the attack and what sort of contingency plan, if any, took effect during the attack.

However, a word of warning: There is no secret formula to prevent APT attacks from happening. Trust us, if we come up with one you will be the first to know! But, like regular fire drills, advanced planning and testing can help prevent or reduce the damage that such an attack can cause.

Read the original blog entry...

More Stories By Sven Hammar

Sven Hammar is Co-Founder and CEO of Apica. In 2005, he had the vision of starting a new SaaS company focused on application testing and performance. Today, that concept is Apica, the third IT company I’ve helped found in my career.

Before Apica, he co-founded and launched Celo Commuication, a security company built around PKI (e-ID) solutions. He served as CEO for three years and helped grow the company from five people to 85 people in two years. Right before co-founding Apica, he served as the Vice President of Marketing Bank and Finance at the security company Gemplus (GEMP).

Sven received his masters of science in industrial economics from the Institute of Technology (LitH) at Linköping University. When not working, you can find Sven golfing, working out, or with family and friends.

Microservices Articles
Kubernetes is a new and revolutionary open-sourced system for managing containers across multiple hosts in a cluster. Ansible is a simple IT automation tool for just about any requirement for reproducible environments. In his session at @DevOpsSummit at 18th Cloud Expo, Patrick Galbraith, a principal engineer at HPE, discussed how to build a fully functional Kubernetes cluster on a number of virtual machines or bare-metal hosts. Also included will be a brief demonstration of running a Galera MyS...
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, provided a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services with...
Growth hacking is common for startups to make unheard-of progress in building their business. Career Hacks can help Geek Girls and those who support them (yes, that's you too, Dad!) to excel in this typically male-dominated world. Get ready to learn the facts: Is there a bias against women in the tech / developer communities? Why are women 50% of the workforce, but hold only 24% of the STEM or IT positions? Some beginnings of what to do about it! In her Day 2 Keynote at 17th Cloud Expo, Sandy Ca...
New competitors, disruptive technologies, and growing expectations are pushing every business to both adopt and deliver new digital services. This ‘Digital Transformation’ demands rapid delivery and continuous iteration of new competitive services via multiple channels, which in turn demands new service delivery techniques – including DevOps. In this power panel at @DevOpsSummit 20th Cloud Expo, moderated by DevOps Conference Co-Chair Andi Mann, panelists examined how DevOps helps to meet the de...
As Enterprise business moves from Monoliths to Microservices, adoption and successful implementations of Microservices become more evident. The goal of Microservices is to improve software delivery speed and increase system safety as scale increases. Documenting hurdles and problems for the use of Microservices will help consultants, architects and specialists to avoid repeating the same mistakes and learn how and when to use (or not use) Microservices at the enterprise level. The circumstance w...
"NetApp's vision is how we help organizations manage data - delivering the right data in the right place, in the right time, to the people who need it, and doing it agnostic to what the platform is," explained Josh Atwell, Developer Advocate for NetApp, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
TCP (Transmission Control Protocol) is a common and reliable transmission protocol on the Internet. TCP was introduced in the 70s by Stanford University for US Defense to establish connectivity between distributed systems to maintain a backup of defense information. At the time, TCP was introduced to communicate amongst a selected set of devices for a smaller dataset over shorter distances. As the Internet evolved, however, the number of applications and users, and the types of data accessed and...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm. In their Day 3 Keynote at 20th Cloud Expo, Chris Brown, a Solutions Marketing Manager at Nutanix, and Mark Lav...
The Software Defined Data Center (SDDC), which enables organizations to seamlessly run in a hybrid cloud model (public + private cloud), is here to stay. IDC estimates that the software-defined networking market will be valued at $3.7 billion by 2016. Security is a key component and benefit of the SDDC, and offers an opportunity to build security 'from the ground up' and weave it into the environment from day one. In his session at 16th Cloud Expo, Reuven Harrison, CTO and Co-Founder of Tufin, ...
Gone are the days when application development was the daunting task of the highly skilled developers backed with strong IT skills, low code application development has democratized app development and empowered a new generation of citizen developers. There was a time when app development was in the domain of people with complex coding and technical skills. We called these people by various names like programmers, coders, techies, and they usually worked in a world oblivious of the everyday pri...