Alleviating eavesdropping attacks in software-defined networking data plane

Aseeri, Ahmad O.; Netjinda, Nuttapong; Hewett, Rattikorn

doi:10.1145/3064814.3064832

Cited by 14 publications

(15 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, n-k threshold principle is used to resist passive eavesdropping. In order to improve the diversity of forwarding paths, Aseeri et al [74] designed bidirectional multipath routing algorithm. By negotiating migrating paths between source and destination, forwarding path is changed randomly during net-flow transmission.…”

Section: Single-layer Mtd Transformation Mechanism In Networkmentioning

confidence: 99%

Moving Target Defense Techniques: A Survey

Cheng

Zhang

Jian-cheng

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

As an active defense technique to change asymmetry in cyberattack-defense confrontation, moving target defense research has become one of the hot spots. In order to gain better understanding of moving target defense, background knowledge and inspiration are expounded at first. Based on it, the concept of moving target defense is analyzed. Secondly, literature analysis method is adopted to explain the design principles and system architecture of moving target defense. In addition, some relevant key techniques are introduced from the aspects of strategy generation, shuffling implementation, and performance evaluation. After that, the applications of moving target defense in different network architectures are illustrated. Finally, existing problems and future trend in this field are elaborated so as to provide a basis for further study.

show abstract

Section: Single-layer Mtd Transformation Mechanism In Networkmentioning

confidence: 99%

Moving Target Defense Techniques: A Survey

Cheng

Zhang

Jian-cheng

et al. 2018

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…As each route transmits only a portion of the packets exchanged during the communication, even though the eavesdropper is well positioned in a strategic point of the network, he will not be able to intercept an entire communication between two devices. As the multipath routing strategy always relies on the shortest path to transmit the acknowledgment (ACK) packets from the receiver, Aseeri et al [145] found that an attacker can still capture all the packets by eavesdropping on the shortest path and blocking the ACK packet corresponding to the packet sent through other routes until it is retransmitted via the path he is listening to. To address this defect, the SDN controller can be utilized to instruct the receiver to send the ACK packet via the path used by the sender.…”

Section: Benignmentioning

confidence: 99%

Three Decades of Deception Techniques in Active Cyber Defense -- Retrospect and Outlook

Zhang¹,

Thing²

2021

Preprint

View full text Add to dashboard Cite

Deception techniques have been widely seen as a game changer in cyber defense. In this paper, we review representative techniques in honeypots, honeytokens, and moving target defense, spanning from the late 1980s to the year 2021. Techniques from these three domains complement with each other and may be leveraged to build a holistic deception based defense. However, to the best of our knowledge, there has not been a work that provides a systematic retrospect of these three domains all together and investigates their integrated usage for orchestrated deceptions. Our paper aims to fill this gap. By utilizing a tailored cyber kill chain model which can reflect the current threat landscape and a four-layer deception stack, a twodimensional taxonomy is developed, based on which the deception techniques are classified. The taxonomy literally answers which phases of a cyber attack campaign the techniques can disrupt and which layers of the deception stack they belong to. Cyber defenders may use the taxonomy as a reference to design an organized and comprehensive deception plan, or to prioritize deception efforts for a budget conscious solution. We also discuss two important points for achieving active and resilient cyber defense, namely deception in depth and deception lifecycle, where several notable proposals are illustrated. Finally, some outlooks on future research directions are presented, including dynamic integration of different deception techniques, quantified deception effects and deception operation cost, hardware-supported deception techniques, as well as techniques developed based on better understanding of the human element.

show abstract

“…[102], [103], [104], [105], [106], [107], [108] Segmentation ✓ ✓ [116], [117] Reconfiguration Isolation and Containment ✓ ✓ ✓ ✓ [118], [119], [120], [121], [122], [123] Dynamic Network Composition ✓ ✓ [101], [124], [125], [126], [127] Non-Persistence ✓ ✓ [128], [129] Moving Target Defense (MTD) [138], [139], [140], [141], [142], [143], [144],…”

Section: Risk Management Vs Cyber-resiliencementioning

confidence: 99%

Cyber-Resilience Evaluation of Cyber-Physical Systems

Segovia

Rubio‐Hernan

Cavalli

et al. 2020

2020 IEEE 19th International Symposium on Network Computing and Applications (NCA)

View full text Add to dashboard Cite

Concerns for the resilience of Cyber-Physical Systems (CPS) in critical infrastructure are growing. CPS integrate sensing, computation, control and networking into physical objects and mission-critical services, connecting traditional infrastructure to internet technologies.While this integration increases service efficiency, it has to face the possibility of new threats posed by the new functionalities. This leads to cyber-threats, such as denial-of-service, modification of data, information leakage, spreading of malware, and many others.Cyber-resilience refers to the ability of a CPS to prepare, absorb, recover, and adapt to the adverse effects associated with cyber-threats, e.g., physical degradation of the CPS performance resulting from a cyber-attack. Cyber-resilience aims at ensuring CPS survival, by keeping the core functionalities of the CPS in case of extreme events. The literature on cyber-resilience is rapidly increasing, leading to a broad variety of research works addressing this new topic. In this article, we create a systematization of knowledge about existing scientific efforts of making CPS cyber-resilient. We systematically survey recent literature addressing cyber-resilience with a focus on techniques that may be used on CPS. We first provide preliminaries and background on CPS and threats, and subsequently survey state-of-the-art approaches that have been proposed by recent research work applicable to CPS. In particular, we aim at differentiating research work from traditional risk management approaches, based on the general acceptance that it is unfeasible to prevent and mitigate all possible risks threatening a CPS. We also discuss questions and research challenges, with a focus on the practical aspects of cyber-resilience, such as the use of metrics and evaluation methods, as well as testing and validation environments.

show abstract

Alleviating eavesdropping attacks in software-defined networking data plane

Cited by 14 publications

References 14 publications

Moving Target Defense Techniques: A Survey

Moving Target Defense Techniques: A Survey

Three Decades of Deception Techniques in Active Cyber Defense -- Retrospect and Outlook

Cyber-Resilience Evaluation of Cyber-Physical Systems

Contact Info

Product

Resources

About