Abstract | ||
---|---|---|
Network address shuffling is one of moving target defense (MTD) techniques that can invalidate the address information attackers have collected based on the current network IP configuration. We propose a software-defined networking-based MTD technique called Flexible Random Virtual IP Multiplexing, namely FRVM, which aims to defend against network reconnaissance and scanning attacks. FRVM enables a host machine to have multiple, random, time-varying virtual IP addresses, which are multiplexed to a real IP address of the host. Multiplexing or de-multiplexing event dynamically remaps all the virtual network addresses of the hosts. Therefore, at the end of a multiplexing event, FRVM aims to make the attackers lose any knowledge gained through the reconnaissance and to disturb their scanning strategy. In this work, we analyze and evaluate our proposed FRVM in terms of the attack success probability under scanning attacks and target host discovery attacks. |
Year | DOI | Venue |
---|---|---|
2018 | 10.1109/TrustCom/BigDataSE.2018.00088 | 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) |
Keywords | DocType | Volume |
Network address shuffling,IP multiplexing,moving target defense,scanning attacks,attack success probability,software-defined networks | Conference | abs/1807.09343 |
ISSN | ISBN | Citations |
2324-9013 | 978-1-5386-4389-1 | 5 |
PageRank | References | Authors |
0.62 | 0 | 6 |
Name | Order | Citations | PageRank |
---|---|---|---|
Dilli P. Sharma | 1 | 6 | 1.31 |
Dong Seong Kim | 2 | 866 | 93.34 |
Seung-hyun Yoon | 3 | 160 | 26.47 |
Hyuk Lim | 4 | 673 | 51.93 |
Jin-Hee Cho | 5 | 359 | 26.17 |
Terrence J. Moore | 6 | 68 | 11.37 |