Scaling IPv6 address bindings in support of a moving target defense
作者: Christopher Morrell , J Scot Ransbottom , Randy Marchany , Joseph G Tront , None
DOI: 10.1109/ICITST.2014.7038852
关键词: The Internet 、 Computer science 、 Computer security 、 Ethernet 、 Peer-to-peer 、 Computer network 、 Network security 、 IPv6 address 、 Client–server model 、 IPv6 、 Server
摘要: Moving target defense is an area of network security research in which machines are moved logically around a order to avoid detection. This done by leveraging the immense size IPv6 address space and statistical improbability two selecting same address. defensive technique forces malicious actor focus on reconnaissance phase their attack rather than focusing only finding holes machine's static defenses. We have current implementation moving entitled MT6D, works well although limited functioning peer scenario. As we push our forward into client server networks, must discover what limits reference ratio. In simple UDP echo that binds large numbers addresses ethernet interface, both number can successfully bind interface speed at requests be handled across bound interfaces.
sci-hub.se 参考文章(8)
Y. Rekhter, Address Allocation for Private Internets RFC. ,vol. 1597, pp. 1- 8 ,(1994)
Justin Yackoski, Jason Li, Scott A. DeLoach, Xinming Ou, Mission-oriented moving target defense based on cryptographically strong network dynamics cyber security and information intelligence research workshop. pp. 57- ,(2013) , 10.1145/2459976.2460040
Rui Zhuang, Su Zhang, Alex Bardas, Scott A. DeLoach, Xinming Ou, Anoop Singhal, Investigating the application of moving target defenses to network security 2013 6th International Symposium on Resilient Control Systems (ISRCS). pp. 162- 169 ,(2013) , 10.1109/ISRCS.2013.6623770
Matthew Dunlop, Stephen Groat, William Urbanski, Randy Marchany, Joseph Tront, None, MT6D: A Moving Target IPv6 Defense military communications conference. pp. 1321- 1326 ,(2011) , 10.1109/MILCOM.2011.6127486
R. Hinden, S. Deering, Internet Protocol, Version 6 (IPv6) Specification Internet Protocol, Version 6 (IPv6) Specification. ,vol. 1883, pp. 1- 37 ,(1995)
J.S. Chase, A.J. Gallatin, K.G. Yocum, End system optimizations for high-speed TCP IEEE Communications Magazine. ,vol. 39, pp. 68- 74 ,(2001) , 10.1109/35.917506
T. Narten, S. Thomson, IPv6 Stateless Address Autoconfiguration RFC 2462. ,vol. 1971, pp. 1- 23 ,(1996)
Jakob Nielsen, Usability Engineering ,(1993)