Reasoning about Moving Target Defense in Attack Modeling Formalisms

06/28/2022
by   Gabriel Ballot, et al.
0

Since 2009, Moving Target Defense (MTD) has become a new paradigm of defensive mechanism that frequently changes the state of the target system to confuse the attacker. This frequent change is costly and leads to a trade-off between misleading the attacker and disrupting the quality of service. Optimizing the MTD activation frequency is necessary to develop this defense mechanism when facing realistic, multi-step attack scenarios. Attack modeling formalisms based on DAG are prominently used to specify these scenarios. Our contribution is a new DAG-based formalism for MTDs and its translation into a Price Timed Markov Decision Process to find the best activation frequencies against the attacker's time/cost-optimal strategies. For the first time, MTD activation frequencies are analyzed in a state-of-the-art DAG-based representation. Moreover, this is the first paper that considers the specificity of MTDs in the automatic analysis of attack modeling formalisms. Finally, we present some experimental results using Uppaal Stratego to demonstrate its applicability and relevance.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
02/07/2020

A Receding-Horizon MDP Approach for Performance Evaluation of Moving Target Defense in Networks

In this paper, we study the problem of assessing the effectiveness of a ...
research
03/25/2019

A cost-effective shuffling method against DDoS attacks using Moving Target Defense

Moving Target Defense(MTD) has emerged as a good solution to alter the a...
research
11/27/2019

Deep Reinforcement Learning based Adaptive Moving Target Defense

Moving target defense (MTD) is a proactive defense approach that aims to...
research
12/04/2017

Changing proxy-server identities as a proactive moving-target defense against reconnaissance for DDoS attacks

We consider a cloud based multiserver system consisting of a set of repl...
research
03/18/2022

HDLock: Exploiting Privileged Encoding to Protect Hyperdimensional Computing Models against IP Stealing

Hyperdimensional Computing (HDC) is facing infringement issues due to st...
research
05/28/2019

A Parameterized Perspective on Protecting Elections

We study the parameterized complexity of the optimal defense and optimal...
research
03/30/2023

URSID: Using formalism to Refine attack Scenarios for vulnerable Infrastructure Deployment

In this paper we propose a novel way of deploying vulnerable architectur...

Please sign up or login with your details

Forgot password? Click here to reset