A Novel Model of Mimic Defense Based on Minimal L-Order Error Probability

Chen, Guoxi; Shi, Guang; Chen, Liquan; He, Xiaoyuan; Jiang, Shengmao

doi:10.1109/access.2020.3024847

Cited by 2 publications

(1 citation statement)

References 38 publications

(42 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Although the introduction of a feedback mechanism into the scheduling strategy algorithm is of great help to improving the defense performance of the mimic defense system, it is pity that there is still lacking a reliable feedback mechanism in the field of mimic defense scheduling algorithms. For example, Wu proposed a qualitative setting standard for feedback indicator in [27], but he did not give a specific quantitative setting method; Gao et al simply increase or decrease the feedback index value by the same factor in [41], which is disable to effectively reflect the real-time security of each executor by that feedback mechanism; In [49], Guoxi Chen et al proposed a feedback method that comprehensively considering the online hours and historical breached times of each executor. Although the mechanism is dynamic to a certain extent, it is still difficult to effectively prevent network attackers from repeating the previous successful attacks to online executors.…”

Section: A: Vulnerability Evaluation Of Each Mimic Component Layermentioning

confidence: 99%

An Optimal Seed Scheduling Strategy Algorithm Applied to Cyberspace Mimic Defense

Chen¹,

Qin

et al. 2021

IEEE Access

View full text Add to dashboard Cite

Cyberspace mimic defense (CMD) is an active defense theory that has emerged in recent years. By dynamically constructing and scheduling multiple executors, the CMD can not only effectively defend against security threats caused by unknown cyberspace weaknesses, but also improve the present situation of information asymmetry between attack and defense in cyberspace. However, as one of the key technologies of the CMD, the scheduling strategy algorithm still needs to be improved in real-time security, reliability, and universality, which has restricted the development and large-scale deployment of the CMD. To solve this problem, we propose an optimal seed scheduling strategy algorithm (OSSSA) in this paper. After using continuous-time Markov processes to mathematically analyze the model of the mimic defense system in cyberspace, we introduce the key factors and their evaluation methods that affecting the CMD defense performance in the OSSSA, then propose a reliable working mechanism of the OSSSA. Furthermore, we present an evaluation method that can effectively evaluate the defense performance of the scheduling algorithms. Experimental results from software simulations and real experiments both show that the OSSSA has better real-time defense performance than the current mainstream scheduling strategy algorithms, and can adapt to different practical application scenarios, which is helpful to the further development of the CMD.

show abstract

Section: A: Vulnerability Evaluation Of Each Mimic Component Layermentioning

confidence: 99%