In reactive MTD, systems react out of necessity to defend against a detected malicious attack. In addition, some elements of the defense system, such as Internet protocol (IP) addresses, port numbers, operating systems, etc., are diversified periodically to create a varying attack surface. In proactive MTD, possible adversarial behaviors are anticipated, and the corresponding defensive strategies are incorporated into the system design to thwart attacks proactively without disrupting operations. MTD systems broadly fall into two categories: proactive MTD and reactive MTD. The term “rotation window” is used throughout the paper to define the duration of time an OS is exposed and vulnerable to an attack. This research contributes to the existing literature by developing an MTD solution that accomplishes three goals: the proposed solution (1) reduces the likelihood of a successful exploit, (2) reduces the impact of a successful exploit, and (3) ensures application availability during operating system (OS) rotations. This research proposes a design to overcome these challenges by developing a Multiple Operating System Rotation Environment (MORE) MTD, which makes use of existing technology to achieve a feasible MTD solution. Although suggestions for MTD defense techniques flourish, implementation of MTD in practice has been slow, perhaps because of the complexity and lack of demonstrated feasibility of the proposed solutions. ![]() MTD systems mitigate the limitations of static defense by creating a dynamic attack surface, which increases uncertainty from the perspective of the attacker(s) as well as the cost and effort required to launch an attack. Numerous cyber security experts in both academia and the industry have acknowledged the challenges of static defense and have suggested Moving Target Defense (MTD) as an ideal solution. PDF and other resources at: /xpls/icp.jsp?arnumber=6900086#articleĪ common vulnerability in traditional cyber security systems is the static nature of defense mechanisms often used by programmers and IT personnel. Written by: Michael Thompson, Nate Evans, Victoria Kisekka In addition, the likelihood of a successful attack decreased proportionally with time between rotations. The test results showed that platform diversity and rotation offer improved security. In addition, the system we developed was tested extensively for effectiveness using CORE Impact Pro (CORE), Nmap, and manual penetration tests. The MTD solution developed in this research utilizes existing technology to provide a feasible dynamic defense solution that can be deployed easily in a real networking environment. The current work proposes a MTD technique that provides enhanced security through a rotation of multiple operating systems. Although suggestions for defensive strategies abound, Moving Target Defense (MTD) has only recently gained attention as a possible solution for mitigating cyber-attacks. ![]() ![]() Multiple OS Rotational Environment an Implemented Moving Target DefenseĪbstract: Cyber-attacks continue to pose a major threat to existing critical infrastructure.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |