{"title":"基于声誉的移动目标防御服务迁移","authors":"Yanjun Zuo","doi":"10.1109/EIT.2016.7535247","DOIUrl":null,"url":null,"abstract":"As a proactive security approach, service migration can be used as a mechanism for moving target defense. By strategically moving services to different platforms, the system changes the service locations and the underlying platform configurations so that potential attackers cannot identify and target those services. This form of moving target increases the barriers for the attackers and make the system more unpredictable for outsiders. In this paper, we present a reputation-based service migration scheme to select the destination platform for each service to migrate periodically or on-demand. In a system where the platforms have different levels of security, quality, reliability, and communication capability to support user services, it is pertinent to choose the appropriate platform for each service as the new hosting infrastructure. The ability and quality of each platform to support user services is reflected on its reputation as evaluated by a set of agents in the system. The reputation of a platform is assessed based on a set of categorical factors. For each factor, a category reputation is determined from the perspective of that factor. We use a transferable belief-based model to combine multiple agents' opinions towards a platform's category reputation. Those category reputations are then aggregated to the overall reputation of the platform. Given the reputations of different platforms in the system, a service is to migrate to a platform with a high level of reputation.","PeriodicalId":333489,"journal":{"name":"2016 IEEE International Conference on Electro Information Technology (EIT)","volume":"60 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Reputation-based service migration for moving target defense\",\"authors\":\"Yanjun Zuo\",\"doi\":\"10.1109/EIT.2016.7535247\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"As a proactive security approach, service migration can be used as a mechanism for moving target defense. By strategically moving services to different platforms, the system changes the service locations and the underlying platform configurations so that potential attackers cannot identify and target those services. This form of moving target increases the barriers for the attackers and make the system more unpredictable for outsiders. In this paper, we present a reputation-based service migration scheme to select the destination platform for each service to migrate periodically or on-demand. In a system where the platforms have different levels of security, quality, reliability, and communication capability to support user services, it is pertinent to choose the appropriate platform for each service as the new hosting infrastructure. The ability and quality of each platform to support user services is reflected on its reputation as evaluated by a set of agents in the system. The reputation of a platform is assessed based on a set of categorical factors. For each factor, a category reputation is determined from the perspective of that factor. We use a transferable belief-based model to combine multiple agents' opinions towards a platform's category reputation. Those category reputations are then aggregated to the overall reputation of the platform. Given the reputations of different platforms in the system, a service is to migrate to a platform with a high level of reputation.\",\"PeriodicalId\":333489,\"journal\":{\"name\":\"2016 IEEE International Conference on Electro Information Technology (EIT)\",\"volume\":\"60 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-08-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE International Conference on Electro Information Technology (EIT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EIT.2016.7535247\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE International Conference on Electro Information Technology (EIT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EIT.2016.7535247","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Reputation-based service migration for moving target defense
As a proactive security approach, service migration can be used as a mechanism for moving target defense. By strategically moving services to different platforms, the system changes the service locations and the underlying platform configurations so that potential attackers cannot identify and target those services. This form of moving target increases the barriers for the attackers and make the system more unpredictable for outsiders. In this paper, we present a reputation-based service migration scheme to select the destination platform for each service to migrate periodically or on-demand. In a system where the platforms have different levels of security, quality, reliability, and communication capability to support user services, it is pertinent to choose the appropriate platform for each service as the new hosting infrastructure. The ability and quality of each platform to support user services is reflected on its reputation as evaluated by a set of agents in the system. The reputation of a platform is assessed based on a set of categorical factors. For each factor, a category reputation is determined from the perspective of that factor. We use a transferable belief-based model to combine multiple agents' opinions towards a platform's category reputation. Those category reputations are then aggregated to the overall reputation of the platform. Given the reputations of different platforms in the system, a service is to migrate to a platform with a high level of reputation.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
