DPDA: A Moving Target Defense System Based on Detection and Prediction Mechanism

Abstract

As a new technology to change the rules of cyberspace games, moving target defense provides a new idea for reversing the asymmetry between the attacker and defender. This paper proposes a moving target defense system based on detection and prediction mechanism‐‐DPDA system (detection-prediction-defense-assessment system), which utilizes the centralized control and programming flexibility of the SDN network. DPDA system is modeled as a discrete event dynamic system (DEDS), and performs detection of existing attacks based on real-time events. On the other hand, the attack probability transformation is used to adjust the transformation period based on the log-normal distribution function for unknown attacks. Finally, the simulation test environment is built. The results show that DPDA can implement more efficient active defense than the system with fixed transformation period.