A Decentralized Approach to Architecture-Based Self-Protecting Software Systems

Porter, Jason; Albassam, Emad

doi:10.1109/ccwc47524.2020.9031205

Cited by 2 publications

(3 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…MTD prevents network attacks by dynamically changing the attack surface of the system such as the static configuration of the network, thereby invalidating the intelligence collected by the attacker and depleting their device resources. According to its mechanism of defense, MTD can be divided into three categories [ 6 ]: shuffling-based MTD [ 7 , 8 , 9 ], diversity-based MTD [ 10 , 11 , 12 ] and redundancy-based MTD [ 13 , 14 ]. The shuffling- based MTD on is the most common one, which protects networks from attack by rearranging or randomizing the key parameters or information of the system, for example, IP shuffling, port hopping, or randomizing packet headers.…”

Section: Related Workmentioning

confidence: 99%

A Two-Layer IP Hopping-Based Moving Target Defense Approach to Enhancing the Security of Mobile Ad-Hoc Networks

Wang

Zhou

Ding

2021

Sensors

View full text Add to dashboard Cite

Mobile ad-hoc networks (MANETs) have great potential applications in military missions or emergency rescue due to their no-infrastructure, self-organizing and multi hop capability characteristics. Obviously, it is important to implement a low-cost and efficient mechanism of anti-invasion, anti-eavesdropping and anti-attack in MANETs, especially for military scenarios. The purpose of intruding or attacking a MANET is usually different from that of wired Internet networks whose security mechanism has been widely explored and implemented. For MANETs, moving target defense (MTD) is a suitable mechanism to enhance the network security, whose basic idea is to continuously and randomly change the system parameters or configuration to create inaccessibility for intruders and attackers. In this paper, a two-layer IP hopping-based MTD approach is proposed, in which device IP addresses or virtual IP addresses change or hop according to the network security status and requirements. The proposed MTD scheme based on the two-layer IP hopping has two major advantages in terms of network security. First, the device IP address of each device is not exposed to the wireless physical channel at all. Second, the two-layer IP hops with individual interval and rules to obtain enhanced security of MANET while maintaining relatively low computational load and communication cost for network control and synchronization. The proposed MTD scheme is implemented in our developed MANET terminals, providing three level of network security: anti-intrusion in normal environment, intrusion detection in offensive environment and anti-eavesdropping in a hostile environment by combining the data encryption technology.

show abstract

Section: Related Workmentioning

confidence: 99%

A Two-Layer IP Hopping-Based Moving Target Defense Approach to Enhancing the Security of Mobile Ad-Hoc Networks

Wang

Zhou

Ding

2021

Sensors

View full text Add to dashboard Cite

show abstract

“…P-III refers to enhancing security-aware adaptation with countermeasure selection. Countermeasure selection and deployment approaches have been proposed before, however, these approaches often are limited in either the kind of countermeasures that can be applied [94,204,227] or in the types of systems that they can protect. To the best of our knowledge, we lack a solution that follows a holistic approach taking into account the possible component and countermeasure configurations available to protect a software system, analyzes their effects, compatibility and costs, and identifies the best available configuration to be deployed.…”

Section: Discussionmentioning

confidence: 99%

“…The third step is a runtime step where the mobile application is monitored for possible threats and when a threat is detected, mitigations are recommended. Porter et al [204] propose a decentralized approach for architecture-based self-protection that distributes architecture-recovery capabilities over multiple system components. Software component rejuvenation is employed to restore the compromised components to a previously identified operational state.…”

Section: Self-protecting Systemsmentioning

confidence: 99%

Design and Analysis of Self-protection: Adaptive Security for Software-Intensive Systems

Skandylas¹

View full text Add to dashboard Cite

Today's software landscape features a high degree of complexity, frequent changes in requirements and stakeholder goals, and uncertainty.Uncertainty and high complexity imply a threat landscape where cybersecurity attacks are a common occurrence while their consequences are often severe. Self-adaptive systems have been proposed to mitigate the complexity and frequent changes by adapting at run-time to deal with situations not known at design time.Self-adaptive systems that aim to identify, analyse and mitigate threats autonomously are called self-protecting systems.This thesis contributes approaches towards developing systems with self-protection capabilities under two perspectives. Under the first perspective, we enhance the security of component-based systems and equip them with self-protection capabilities that reduce the exposedattack surface or provide efficient defenses against identified attacks. We target systems where information about the system components and the adaptationdecisions is available, and control over the adaptation is possible. We employ runtime threat modeling and analysis using quantitative risk analysis and probabilistic verification to rank adaptations to be applied in the system in terms of their security levels. We then introduce modular and incremental verification approaches to tackle the scalability issues of probabilistic verification to be able to analyze larger-scale software systems.To protect against cyberattacks that cannot be mitigated by reducing the exposed attack surface, we propose an approach to analyze the security of different software architectures incorporating countermeasures to decide on the most suitable ones to evolve to. Under the second perspective, we study open decentralized systems where we have limited information about and limited control over the system entities. We employ decentralized information flow control mechanisms to enforce security by controlling the interactions among the system elements.We extend decentralized information flow control by incorporating trust and adding adaptationcapabilities that allow the system to identify security threats and self-organize to maximize trust between the system entities.

show abstract

A Decentralized Approach to Architecture-Based Self-Protecting Software Systems

Cited by 2 publications

References 12 publications

A Two-Layer IP Hopping-Based Moving Target Defense Approach to Enhancing the Security of Mobile Ad-Hoc Networks

A Two-Layer IP Hopping-Based Moving Target Defense Approach to Enhancing the Security of Mobile Ad-Hoc Networks

Design and Analysis of Self-protection: Adaptive Security for Software-Intensive Systems

Contact Info

Product

Resources

About