Analysis of Network Address Shuffling as a Moving Target Defense

被引:0
|
作者
Carroll, Thomas E. [1 ]
Crouse, Michael [2 ]
Fulp, Errin W. [3 ,4 ]
Berenhaut, Kenneth S. [3 ,4 ]
机构
[1] Pacific NW Natl Lab, Richland, WA 99352 USA
[2] Harvard Univ, Dept Comp Sci, Cambridge, MA 02138 USA
[3] Wake Forest Univ, Dept Comp Sci, Winston Salem, NC 27109 USA
[4] Wake Forest Univ, Dept Math, Winston Salem, NC 27109 USA
来源
2014 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC) | 2014年
关键词
D O I
暂无
中图分类号
TN [电子技术、通信技术];
学科分类号
0809 ;
摘要
Address shuffling is a type of moving target defense that prevents an attacker from reliably contacting a system by periodically remapping network addresses. Although limited testing has demonstrated it to be effective, little research has been conducted to examine the theoretical limits of address shuffling. As a result, it is difficult to understand how effective shuffling is and under what circumstances it is a viable moving target defense. This paper introduces probabilistic models that can provide insight into the performance of address shuffling. These models quantify the probability of attacker success in terms of network size, quantity of addresses scanned, quantity of vulnerable systems, and the frequency of shuffling. Theoretical analysis shows that shuffling is an acceptable defense if there is a small population of vulnerable systems within a large network address space, however shuffling has a cost for legitimate users. These results will also be shown empirically using simulation and actual traffic traces.
引用
收藏
页码:701 / 706
页数:6
相关论文
共 50 条
  • [1] Poster: Address Shuffling based Moving Target Defense for In-Vehicle Software-Defined Networks
    Yoon, Seunghyun
    Cho, Jin-Hee
    Kim, Dong Seong
    Moore, Terrence J.
    Nelson, Frederica
    Lim, Hyuk
    MOBICOM'19: PROCEEDINGS OF THE 25TH ANNUAL INTERNATIONAL CONFERENCE ON MOBILE COMPUTING AND NETWORKING, 2019,
  • [2] EVADE: Efficient Moving Target Defense for Autonomous Network Topology Shuffling Using Deep Reinforcement Learning
    Zhang, Qisheng
    Cho, Jin-Hee
    Moore, Terrence J.
    Kim, Dan Dongseong
    Lim, Hyuk
    Nelson, Frederica
    APPLIED CRYPTOGRAPHY AND NETWORK SECURITY, PT I, ACNS 2023, 2023, 13905 : 555 - 582
  • [3] On the Defense Advantages of Network Address Shuffling Against Different Scanning Attacks
    Wang Kai
    Chen Xinhua
    Chen Xi
    Wu Zehui
    JOURNAL OF ELECTRONICS & INFORMATION TECHNOLOGY, 2018, 40 (04) : 794 - 801
  • [4] A New Dynamic Address Solution for Moving Target Defense
    Wang, Shaolei
    Zhang, Lei
    Tang, Chaojing
    2016 IEEE INFORMATION TECHNOLOGY, NETWORKING, ELECTRONIC AND AUTOMATION CONTROL CONFERENCE (ITNEC), 2016, : 1149 - 1152
  • [5] Overview on Moving Target Network Defense
    Zhou, Xuan
    Lu, Yuliang
    Wang, Yongjie
    Yan, Xuehu
    2018 IEEE 3RD INTERNATIONAL CONFERENCE ON IMAGE, VISION AND COMPUTING (ICIVC), 2018, : 821 - 827
  • [6] An Introduction to Network Address Shuffling
    Cai, Guilin
    Wang, Baosheng
    Wang, Xiaofeng
    Yuan, Yulei
    Li, Sudan
    2016 18TH INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATIONS TECHNOLOGY (ICACT) - INFORMATION AND COMMUNICATIONS FOR SAFE AND SECURE LIFE, 2016, : 185 - 190
  • [7] Moving Target Defense for Virtual Network Functions
    Peretz, Reuven
    Shenzis, Shlomo
    Hay, David
    NOMS 2020 - PROCEEDINGS OF THE 2020 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM 2020: MANAGEMENT IN THE AGE OF SOFTWARIZATION AND ARTIFICIAL INTELLIGENCE, 2020,
  • [8] Computer Network Deception as a Moving Target Defense
    Urias, Vincent E.
    Stout, William M. S.
    Loverro, Caleb
    49TH ANNUAL IEEE INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY (ICCST), 2015, : 101 - 106
  • [9] A Symmetric Address Translation Approach for a Network Layer Moving Target Defense to Secure Power Grid Networks
    Ulrich, Jacob
    Drahos, Jacob
    Govindarasu, Manimaran
    2017 RESILIENCE WEEK (RWS), 2017, : 163 - 169
  • [10] A Formal Analysis of Moving Target Defense
    Rahim, Muhammad Abdul Basit Ur
    Duan, Qi
    Al-Shaer, Ehab
    2020 IEEE 44TH ANNUAL COMPUTERS, SOFTWARE, AND APPLICATIONS CONFERENCE (COMPSAC 2020), 2020, : 1802 - 1807
12345