{"title":"DPDA:一种基于检测与预测机制的移动目标防御系统","authors":"Jinglei Tan, Hongqi Zhang","doi":"10.1109/CompComm.2018.8781064","DOIUrl":null,"url":null,"abstract":"As a new technology to change the rules of cyberspace games, moving target defense provides a new idea for reversing the asymmetry between the attacker and defender. This paper proposes a moving target defense system based on detection and prediction mechanism‐‐DPDA system (detection-prediction-defense-assessment system), which utilizes the centralized control and programming flexibility of the SDN network. DPDA system is modeled as a discrete event dynamic system (DEDS), and performs detection of existing attacks based on real-time events. On the other hand, the attack probability transformation is used to adjust the transformation period based on the log-normal distribution function for unknown attacks. Finally, the simulation test environment is built. The results show that DPDA can implement more efficient active defense than the system with fixed transformation period.","PeriodicalId":339777,"journal":{"name":"2018 IEEE 4th International Conference on Computer and Communications (ICCC)","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"DPDA: A Moving Target Defense System Based on Detection and Prediction Mechanism\",\"authors\":\"Jinglei Tan, Hongqi Zhang\",\"doi\":\"10.1109/CompComm.2018.8781064\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"As a new technology to change the rules of cyberspace games, moving target defense provides a new idea for reversing the asymmetry between the attacker and defender. This paper proposes a moving target defense system based on detection and prediction mechanism‐‐DPDA system (detection-prediction-defense-assessment system), which utilizes the centralized control and programming flexibility of the SDN network. DPDA system is modeled as a discrete event dynamic system (DEDS), and performs detection of existing attacks based on real-time events. On the other hand, the attack probability transformation is used to adjust the transformation period based on the log-normal distribution function for unknown attacks. Finally, the simulation test environment is built. The results show that DPDA can implement more efficient active defense than the system with fixed transformation period.\",\"PeriodicalId\":339777,\"journal\":{\"name\":\"2018 IEEE 4th International Conference on Computer and Communications (ICCC)\",\"volume\":\"11 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 IEEE 4th International Conference on Computer and Communications (ICCC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CompComm.2018.8781064\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE 4th International Conference on Computer and Communications (ICCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CompComm.2018.8781064","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
DPDA: A Moving Target Defense System Based on Detection and Prediction Mechanism
As a new technology to change the rules of cyberspace games, moving target defense provides a new idea for reversing the asymmetry between the attacker and defender. This paper proposes a moving target defense system based on detection and prediction mechanism‐‐DPDA system (detection-prediction-defense-assessment system), which utilizes the centralized control and programming flexibility of the SDN network. DPDA system is modeled as a discrete event dynamic system (DEDS), and performs detection of existing attacks based on real-time events. On the other hand, the attack probability transformation is used to adjust the transformation period based on the log-normal distribution function for unknown attacks. Finally, the simulation test environment is built. The results show that DPDA can implement more efficient active defense than the system with fixed transformation period.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
