The New Progress of Motive Target Defense Technology
作者: Tan Tiantian
DOI: 10.11648/J.IJDST.20180403.12
关键词:
摘要: The concept of moving target defense (MTD) is an excellent solution proposed in USA to make the defender become dominant player while disadvantage one game and attacker. Focus on summarized attack surface characteristic functional connotation defense, according hierarchy execution stack, this paper classified analyzed current technologies into four categories, such as dynamic communication network, run-time environment, data application, described theory every mechanism each category, advantages disadvantages mechanism. On basis study mechanisms technologies, designed a system based terminal information hopping its anti-attack performance. experiment result proven that can effectively increase time consumption complexity successful attack, decrease rate by continually shifting attack surface, our design greatly improved strength inactive defense. This provide theoretical guidance for implementation muti-mechanisms systems.
sciencepublishinggroup.com参考文章(24)
Pratyusa K. Manadhata, Game Theoretic Approaches to Attack Surface Shifting Moving Target Defense. pp. 1- 13 ,(2013) , 10.1007/978-1-4614-5416-8_1
Yih Huang, Anup K. Ghosh, Introducing Diversity and Uncertainty to Create Moving Attack Surfaces for Web Services Moving Target Defense. pp. 131- 151 ,(2011) , 10.1007/978-1-4614-0977-9_8
Todd Jackson, Babak Salamat, Andrei Homescu, Karthikeyan Manivannan, Gregor Wagner, Andreas Gal, Stefan Brunthaler, Christian Wimmer, Michael Franz, Compiler-Generated Software Diversity Moving Target Defense. pp. 77- 98 ,(2011) , 10.1007/978-1-4614-0977-9_4
Jafar Haadi Jafarian, Ehab Al-Shaer, Qi Duan, Adversary-aware IP address randomization for proactive agility against sophisticated attackers 2015 IEEE Conference on Computer Communications (INFOCOM). pp. 738- 746 ,(2015) , 10.1109/INFOCOM.2015.7218443
Daniel C. DuVarney, Sandeep Bhatkar, R. Sekar, Address obfuscation: an efficient approach to combat a board range of memory error exploits usenix security symposium. pp. 8- 8 ,(2003)
Sandeep Bhatkar, R. Sekar, Data Space Randomization international conference on detection of intrusions and malware and vulnerability assessment. pp. 1- 22 ,(2008) , 10.1007/978-3-540-70542-0_1
Jafar Haadi Jafarian, Ehab Al-Shaer, Qi Duan, An Effective Address Mutation Approach for Disrupting Reconnaissance Attacks IEEE Transactions on Information Forensics and Security. ,vol. 10, pp. 2562- 2577 ,(2015) , 10.1109/TIFS.2015.2467358
Andrew Clark, Kun Sun, Radha Poovendran, Effectiveness of IP address randomization in decoy-based moving target defense conference on decision and control. pp. 678- 685 ,(2013) , 10.1109/CDC.2013.6759960
S. Antonatos, P. Akritidis, E.P. Markatos, K.G. Anagnostakis, Defending against hitlist worms using network address space randomization Computer Networks. ,vol. 51, pp. 3471- 3490 ,(2007) , 10.1016/J.COMNET.2007.02.006
Wei Peng, Feng Li, Chin-Tser Huang, Xukai Zou, A moving-target defense strategy for Cloud-based services with heterogeneous and dynamic attack surfaces international conference on communications. pp. 804- 809 ,(2014) , 10.1109/ICC.2014.6883418