{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T11:59:06Z","timestamp":1756382346808,"version":"3.37.3"},"reference-count":39,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans. Comput."],"published-print":{"date-parts":[[2023]]},"DOI":"10.1109\/tc.2023.3238125","type":"journal-article","created":{"date-parts":[[2023,1,19]],"date-time":"2023-01-19T18:56:25Z","timestamp":1674154585000},"page":"1-14","source":"Crossref","is-referenced-by-count":7,"title":["A Mutation-Enabled Proactive Defense Against Service-Oriented Man-in-The-Middle Attack in Kubernetes"],"prefix":"10.1109","author":[{"given":"Tengchao","family":"Ma","sequence":"first","affiliation":[{"name":"State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1467-1086","authenticated-orcid":false,"given":"Changqiao","family":"Xu","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shujie","family":"Yang","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yiting","family":"Huang","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Qingzhao","family":"An","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xiaohui","family":"Kuang","sequence":"additional","affiliation":[{"name":"National Key Laboratory of Science and Technology on Information System Security, Beijing Institute of System Engineering, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3443-6924","authenticated-orcid":false,"given":"Luigi Alfredo","family":"Grieco","sequence":"additional","affiliation":[{"name":"Dep. of Electrical and Information Engineering (DEI), Politecnico di Bari, Bari, Italy"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2020.2995638"},{"volume-title":"Kubernetes","year":"2021","key":"ref2"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2021.3049598"},{"year":"2022","key":"ref4","article-title":"Azure confidential computing"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2017.2788442"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/TCC.2020.3033807"},{"volume-title":"D. Groombridge","year":"2022","key":"ref7"},{"article-title":"CVE-2020\u20138554: Man in the middle using LoadBalancer or ExternalIPs","year":"2020","author":"Allclair","key":"ref11"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/3357223.3365759"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/BigData50022.2020.9377815"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.comcom.2020.11.019"},{"key":"ref15","doi-asserted-by":"crossref","DOI":"10.17487\/RFC9000","article-title":"QUIC: A UDP-Based multiplexed and secure transport","author":"Iyengar","year":"2021"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-63086-7_1"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.3004255"},{"key":"ref20","first-page":"539","article-title":"Context-aware IPv6 address mutation","volume-title":"Proc. 21st Int. Conf. Inf. Commun. Secur.","author":"Marx"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2016.7524602"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2015.7218443"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2007.02.006"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/1030083.1030124"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/TNSM.2018.2889842"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom\/BigDataSE.2018.00088"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1002\/ett.4440"},{"key":"ref28","first-page":"1","article-title":"MIMIQ: Masking IPs with migration in QUIC","volume-title":"Proc. 10th USENIX Workshop Free Open Commun. Internet","author":"Govil"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/MILCOM.2011.6127486"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.14722\/madweb.2022.23004"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.3390\/s21072355"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2016.2636907"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1145\/2342441.2342467"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-36883-7_19"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ICC.2019.8761496"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1631\/FITEE.1601548"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/trustcom.2015.383"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1002\/ett.4534"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1002\/ett.4594"},{"article-title":"Protecting against an unfixed kubernetes man-in-the-middle vulnerability (CVE-2020\u20138554)","year":"2020","author":"Avrahami","key":"ref40"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/3366423.3380062"},{"article-title":"QUIC-LB: Generating routable QUIC connection IDs","year":"2022","author":"Duke","key":"ref42"},{"article-title":"QUIC and HTTP\/3 implementation in python","year":"2021","author":"Lain\u00e9","key":"ref43"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2022.3163339"}],"container-title":["IEEE Transactions on Computers"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/12\/4358213\/10021881.pdf?arnumber=10021881","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,3,14]],"date-time":"2024-03-14T05:20:17Z","timestamp":1710393617000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10021881\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"references-count":39,"URL":"https:\/\/doi.org\/10.1109\/tc.2023.3238125","relation":{},"ISSN":["0018-9340","1557-9956","2326-3814"],"issn-type":[{"type":"print","value":"0018-9340"},{"type":"electronic","value":"1557-9956"},{"type":"electronic","value":"2326-3814"}],"subject":[],"published":{"date-parts":[[2023]]}}}