Back
  1. Home
  3. Detailled Reference
Download
Paper published in a book (Scientific congresses, symposiums and conference proceedings)
Security Modeling and Analysis of Moving Target Defense in Software Defined Networks
Rodrigues de Mendonça Neto, Júlio; Kim, Minjune; Graczyk, Rafal et al.
2022In 2022 IEEE 27th Pacific Rim International Symposium on Dependable Computing (PRDC)
Peer reviewed
Permalink
https://hdl.handle.net/10993/52779
DOI
10.1109/PRDC55274.2022.00028
 

Files (1)Send toDetailsStatisticsBibliographySimilar publications

Files

Full Text
prdc_pre_print.pdf
Author preprint (655.16 kB) Creative Commons License - Attribution, Non-Commercial, No Derivative
Download

All documents in ORBilu are protected by a user license.

Send to


Details


Keywords :
Security; Moving Target Defense; Software Defined Networks; Petri nets
Abstract :
[en] The use of traditional defense mechanisms or intrusion detection systems presents a disadvantage for defenders against attackers since these mechanisms are essentially reactive. Moving target defense (MTD) has emerged as a proactive defense mechanism to reduce this disadvantage by randomly and continuously changing the attack surface of a system to confuse attackers. Although significant progress has been made recently in analyzing the security effectiveness of MTD mechanisms, critical gaps still exist, especially in maximizing security levels and estimating network reconfiguration speed for given attack power. In this paper, we propose a set of Petri Net models and use them to perform a comprehensive evaluation regarding key security metrics of Software-Defined Network (SDNs) based systems adopting a time-based MTD mechanism. We evaluate two use-case scenarios considering two different types of attacks to demonstrate the feasibility and applicability of our models. Our analyses showed that a time-based MTD mechanism could reduce the attackers’ speed by at least 78% compared to a system without MTD. Also, in the best-case scenario, it can reduce the attack success probability by about ten times.
Disciplines :
Computer science
Author, co-author :
Rodrigues de Mendonça Neto, Júlio ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > CritiX
Kim, Minjune;  The University of Queensland - UQ > School of Information Technology and Electrical Engineering
Graczyk, Rafal ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > CritiX
Volp, Marcus  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > CritiX
Kim, Dong Seong;  The University of Queensland > School of Information Technology and Electrical Engineering
External co-authors :
yes
Language :
English
Title :
Security Modeling and Analysis of Moving Target Defense in Software Defined Networks
Publication date :
28 November 2022
Event name :
27th IEEE Pacific Rim International Symposium on Dependable Computing (PRDC 2022)
Event date :
28-11-2022 to 1-12-2022
Audience :
International
Main work title :
2022 IEEE 27th Pacific Rim International Symposium on Dependable Computing (PRDC)
Publisher :
IEEE, Beijing, China
ISBN/EAN :
978-1-6654-8555-5
Collection ISSN :
2473-3105
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
FnR Project :
FNR14689454 - Hypervisor-enforced Radiation Tolerance In Multi-core Socs For Space, 2020 (01/09/2021-31/08/2024) - Marcus Völp
Name of the research project :
Hypervisor-enforced Radiation Tolerance In Multi-core Socs For Space
Funders :
FNR - Fonds National de la Recherche [LU]
Funding number :
C20/IS/14689454/HERA
Funding text :
This research is supported by the Fond National de Recherche Luxembourg (FNR) through grant no. C20/IS/14689454/HERA.
Available on ORBilu :
since 16 November 2022

Statistics

Number of views
158 (19 by Unilu)
Number of downloads
4 (2 by Unilu)
More statistics

Bibliography

Similar publications


Contact ORBilu