Rui Zhuang
Scott A. DeLoach
ABSTRACT
Moving Target Defenses (MTD) have been touted as a game changing approach to computer security that eliminates the static nature of current computer systems -- an attacker's biggest advantage. While promising, the dynamism of MTD introduces challenges related to understanding and quantifying the impact of MTD systems on security, users, and attackers. To analyze this impact, both the concepts of MTD systems and cyber attacks must be formalized. While a theory of MTD systems was proposed in [18], this paper presents a theory of cyber attacks that supports the understanding and analysis of the interaction between MTD systems and the attacks they hope to thwart. The theory defines key concepts that support precise discussion of attacker knowledge, attack types, and attack instances. The paper also presents concrete examples to show how these definitions and concepts can be used in realistic scenarios.
- S. M. Bellovin. On the brittleness of software and the infeasibility of security metrics. Security & Privacy, IEEE, 4(4):96--96, 2006. Google Scholar
Digital Library
- S. A. Çamtepe and B. Yener. A formal method for attack modeling and detection. SA Camtepe, B. Yener, 2006.Google Scholar
- T. Hobson, H. Okhravi, D. Bigelow, R. Rudd, and W. Streilein. On the challenges of effective movement. In Proceedings of the First ACM Workshop on Moving Target Defense, pages 41--50. ACM, 2014. Google ScholarDigital Library
- J. Homer, S. Zhang, X. Ou, D. Schmidt, Y. Du, S. R. Rajagopalan, and A. Singhal. Aggregating vulnerability metrics in enterprise networks using attack graphs. Journal of Computer Security, 21(4):561--597, 2013. Google ScholarCross Ref
- K. Ingols, R. Lippmann, and K. Piwowarski. Practical attack graph generation for network defense. In Proceedings of the 22nd Annual Computer Security Applications Conference (ACSAC), 2006. Google ScholarDigital Library
- S. Jajodia and S. Noel. Advanced cyber attack modeling, analysis, and visualization. Technical report, George Mason University, Mar. 2010.Google Scholar
- B. Kordy, L. Pietre-Cambacedes, and P. Schweitzer. Dag-based attack and defense modeling: Don't miss the forest for the attack trees. CoRR, abs/1303.7397, 2013.Google Scholar
- D. J. Leversage and E. James. Estimating a system's mean time-to-compromise. Security & Privacy, IEEE, 6(1):52--60, 2008. Google ScholarDigital Library
- A. P. Moore, R. J. Ellison, and R. C. Linger. Attack modeling for information security and survivability. Technical report, Carnegie Mellon University/SEI Report Number: Carnegie Mellon University/SEI-2001-TN-001, Mar. 2001.Google ScholarCross Ref
- NITRD. National Cyber Leap Year Summit 2009 co-chairs' report, networking and information technology research and development. Technical report, National Office for the Federal Networking and Information Technology Research and Development Program, Sept. 2009.Google Scholar
- X. Ou, S. Govindavajhala, and A. W. Appel. Mulval: A logic-based network security analyzer. In Proceedings of the 14th Conference on USENIX Security Symposium, 2005. Google ScholarDigital Library
- B. Schneier. Attack trees. https://www.schneier.com/paper-attacktrees-ddj-ft.html, 1999.Google Scholar
- H. Shacham, M. Page, B. Pfaff, E.-J. Goh, N. Modadugu, and D. Boneh. On the effectiveness of address-space randomization. In Proceedings of the 11th ACM conference on Computer and communications security, pages 298--307. ACM, 2004. Google ScholarDigital Library
- M. P. Singh. Towards a science of security. http://www.computer.org/portal/web/computingnow/archive/january2013, 2013. Online, accessed June 30, 2014.Google Scholar
- J. Steffan and M. Schumacher. Collaborative attack modeling. In Proceedings of ACM Symposium on Applied Computing (SAC), 2002. Google ScholarDigital Library
- P. Team. PaX address space layout randomization (ASLR), 2003.Google Scholar
- R. Zhuang, S. A. DeLoach, and X. Ou. A Model for Analyzing the Effect of Moving Target Defenses on Enterprise Networks. In Proceedings of the 9th Annual Cyber and Information Security Research Conference, pages 73--76. ACM, 2014. Google ScholarDigital Library
- R. Zhuang, S. A. DeLoach, and X. Ou. Towards a theory of moving target defense. In Proceedings of the First ACM Workshop on Moving Target Defense, pages 31--40. ACM, 2014. Google ScholarDigital Library
Index Terms
- A Theory of Cyber Attacks: A Step Towards Analyzing MTD Systems
Recommendations
Towards a Theory of Moving Target Defense
MTD '14: Proceedings of the First ACM Workshop on Moving Target DefenseThe static nature of cyber systems gives attackers the advantage of time. Fortunately, a new approach, called the Moving Target Defense (MTD) has emerged as a potential solution to this problem. While promising, there is currently little research to ...
A Tale of Three Cyber-Defense Workshops
The National Cyber Defense Initiative (NCDI) has been working behind the scenes to help inform the US research agenda for strategic cyber defense. An important part of the NDCI's activities has been sponsorship of three workshops: the 2006 Safe-...
Moving Target Defense Against Injection Attacks
Algorithms and Architectures for Parallel ProcessingAbstractWith the development of network technology, web services become more convenient and popular. However, web services are also facing serious security threats, especially SQL injection attack(SQLIA). Due to the diversity of attack techniques and the ...
Comments