Toward Domain Name System privacy enhancement using intent‐based Moving Target Defense framework over software defined networks

Intent-Based Networking (IBN) is an emerging networking paradigm while Moving Target Defense (MTD) is an active security technique. In this paper, the Intent-based Moving Target Defense (INMTD) framework using Software Defined Networks is proposed. INMTD is the first effort in exploiting IBN for the design of an efficient Moving Target Defense (MTD) framework. INMTD uses the concept of shadow servers in order to counter the first stage of cyber-attacks, i.e. reconnaissance attacks targeted against servers running in SDN networks. INMTD comprises of an MTD application running on an SDN controller. The MTD application has reconnaissance detection, MTD movement, and MTD monitoring modules. The MTD application is integrated with the intent-based northbound API of SDN controller. INMTD not only provides protection against probing attacks, but it also provides high availability due to shadow servers. The proposed framework was implemented using Mininet and ONOS SDN controller. The proposed framework was assessed in terms of defender cost, attacker’s effort, and introduced complexity in the system. The results substantiate the efficient protection against reconnaissance attacks at lower computational cost.

Download Full-text

On evolutionary computation for moving target defense in software defined networks

Proceedings of the Genetic and Evolutionary Computation Conference Companion on - GECCO '17 ◽

10.1145/3067695.3075604 ◽

2017 ◽

Cited By ~ 6

Author(s):

Adetokunbo Makanju ◽

A. Nur Zincir-Heywood ◽

Shinsaku Kiyomoto

Keyword(s):

Evolutionary Computation ◽

Moving Target ◽

Software Defined Networks ◽

Moving Target Defense

Download Full-text

Attack Graph-Based Moving Target Defense in Software-Defined Networks

IEEE Transactions on Network and Service Management ◽

10.1109/tnsm.2020.2987085 ◽

2020 ◽

Vol 17 (3) ◽

pp. 1653-1668

Author(s):

Seunghyun Yoon ◽

Jin-Hee Cho ◽

Dong Seong Kim ◽

Terrence J. Moore ◽

Frederica Free-Nelson ◽

...

Keyword(s):

Moving Target ◽

Software Defined Networks ◽

Moving Target Defense ◽

Attack Graph

Download Full-text

An SDN-Based Fingerprint Hopping Method to Prevent Fingerprinting Attacks

Security and Communication Networks ◽

10.1155/2017/1560594 ◽

2017 ◽

Vol 2017 ◽

pp. 1-12 ◽

Cited By ~ 4

Author(s):

Zheng Zhao ◽

Fenlin Liu ◽

Daofu Gong

Keyword(s):

Operating System ◽

Moving Target ◽

Software Defined Networks ◽

Optimal Defense ◽

Moving Target Defense ◽

Defense Strategy ◽

System Information ◽

Fingerprinting Attack

Fingerprinting attacks are one of the most severe threats to the security of networks. Fingerprinting attack aims to obtain the operating system information of target hosts to make preparations for future attacks. In this paper, a fingerprint hopping method (FPH) is proposed based on software-defined networks to defend against fingerprinting attacks. FPH introduces the idea of moving target defense to show a hopping fingerprint toward the fingerprinting attackers. The interaction of the fingerprinting attack and its defense is modeled as a signal game, and the equilibriums of the game are analyzed to develop an optimal defense strategy. Experiments show that FPH can resist fingerprinting attacks effectively.

Download Full-text