Comparing Different Moving Target Defense Techniques

Xu, Jun; Guo, Pinyao; Zhao, Mingyi; Erbacher, Robert F.; Zhu, Minghui; Liu, Peng

doi:10.1145/2663474.2663486

Cited by 97 publications

(33 citation statements)

References 28 publications

(43 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Examples in this category include instruction set randomization [5,6], system call number randomization [19], and address space layout randomization [20]). The third MTD category is named networkbased diversification [21], such as host IP mutation and hopping, network database schema mutation, and random finger printing, with the basic defensive idea to be: randomly change network configurations without causing network service failures. The fourth MTD category is dynamic platform techniques [21], which changes platform properties or switches among different platforms to stop attacking processes.…”

Section: Related Workmentioning

confidence: 99%

“…The third MTD category is named networkbased diversification [21], such as host IP mutation and hopping, network database schema mutation, and random finger printing, with the basic defensive idea to be: randomly change network configurations without causing network service failures. The fourth MTD category is dynamic platform techniques [21], which changes platform properties or switches among different platforms to stop attacking processes. Examples in this category include virtual machine rotations, serverswitching techniques, and self-cleaning techniques.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process

Huang¹,

Zhu²,

Yang³

2018

ICST Transactions on Security and Safety

View full text Add to dashboard Cite

A Moving Target Defense (MTD)-enabled system is one which can dynamically and rapidly change its properties and code such that the attackers do not have sufficient time to exploit it. Although a variety of MTD systems have been proposed, few work has focused on assessing the relative cost-effectiveness of different MTD approaches. In this paper, based on a generic MTD theory, we propose five general evaluation metrics and an assessment framework on top of Analytic Hierarchy Process (AHP), which aggregates these five metrics and systematically evaluates/compares security strengths and costs of multiple MTD-based approaches in the same category. This framework could be widely used in different MTD categories under various attacks and it will enable a security specialist to choose the best MTD approach from a set of possible alternatives based on his/her goal and understanding of the problem. A detailed case study on a specific MTD category called software diversification validates the effectiveness of this framework. Our evaluation results rank three software diversity algorithms and choose the best one among three based on problem setting and situation constraints.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process

Huang¹,

Zhu²,

Yang³

2018

ICST Transactions on Security and Safety

View full text Add to dashboard Cite

show abstract

“…Different techniques and strategies are applied in moving target defense [7]. Some of them are discussed below:…”

Section: Moving Target Defense Strategiesmentioning

confidence: 99%

Automated Live Migration in OpenStack:A Moving Target Defense Solution

Shiva¹

2017

JCSAIT

View full text Add to dashboard Cite

“…MTDs are built on the premise of continuously randomizing the network's configuration (e.g., cryptographic keys, network parameters, IP addresses) so as to increase the uncertainty and cost of attack on the adversary. The effective deployment of MTDs requires meeting several challenges that range from optimizing the randomization to analyzing the costs and benefits of MTDs [2]- [10].…”

Section: Introductionmentioning

confidence: 99%

Single controller stochastic games for optimized moving target defense

Eldosouky¹,

Saad²,

Niyato³

2016

2016 IEEE International Conference on Communications (ICC)

View full text Add to dashboard Cite

Moving target defense (MTD) techniques that enable a system to randomize its configuration to thwart prospective attacks are an effective security solution for tomorrow's wireless networks. However, there is a lack of analytical techniques that enable one to quantify the benefits and tradeoffs of MTDs. In this paper, a novel approach for implementing MTD techniques that can be used to randomize cryptographic techniques and keys in wireless networks is proposed. In particular, the problem is formulated as a stochastic game in which a base station (BS), acting as a defender seeks to strategically change its cryptographic techniques and keys in an effort to deter an attacker that is trying to eavesdrop on the data. The game is shown to exhibit a single-controller property in which only one player, the defender, controls the state of the game. For this game, the existence and properties of the Nash equilibrium are studied, in the presence of a defense cost for using MTD. Then, a practical algorithm for deriving the equilibrium MTD strategies is derived. Simulation results show that the proposed game-theoretic MTD framework can significantly improve the overall utility of the defender, while enabling effective randomization over cryptographic techniques.

show abstract

Comparing Different Moving Target Defense Techniques

Cited by 97 publications

References 28 publications

An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process

An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process

Automated Live Migration in OpenStack:A Moving Target Defense Solution

Single controller stochastic games for optimized moving target defense

Contact Info

Product

Resources

About