SD-CPC: SDN Controller Placement Camouflage based on stochastic game for Moving-target Defense

2020 ◽  
Author(s):  
Mohamed Samir ◽  
Mohamed Azab ◽  
Effat Samir
Keyword(s):  
Stochastic Game ◽  
Moving Target ◽  
Moving Target Defense ◽  
Controller Placement ◽  
Sdn Controller

scholarly journals INMTD: Intent-based Moving Target Defense Framework using Software Defined Networks

2020 ◽  
Vol 10 (1) ◽  
pp. 5142-5147 ◽  
Author(s):  
M. F. Hyder ◽  
M. A. Ismail
Keyword(s):  
Computational Cost ◽  
Cyber Attacks ◽  
High Availability ◽  
Moving Target ◽  
Software Defined Networks ◽  
Moving Target Defense ◽  
Efficient Protection ◽  
Sdn Controller ◽  
Probing Attacks

Intent-Based Networking (IBN) is an emerging networking paradigm while Moving Target Defense (MTD) is an active security technique. In this paper, the Intent-based Moving Target Defense (INMTD) framework using Software Defined Networks is proposed. INMTD is the first effort in exploiting IBN for the design of an efficient Moving Target Defense (MTD) framework. INMTD uses the concept of shadow servers in order to counter the first stage of cyber-attacks, i.e. reconnaissance attacks targeted against servers running in SDN networks. INMTD comprises of an MTD application running on an SDN controller. The MTD application has reconnaissance detection, MTD movement, and MTD monitoring modules. The MTD application is integrated with the intent-based northbound API of SDN controller. INMTD not only provides protection against probing attacks, but it also provides high availability due to shadow servers. The proposed framework was implemented using Mininet and ONOS SDN controller. The proposed framework was assessed in terms of defender cost, attacker’s effort, and introduced complexity in the system. The results substantiate the efficient protection against reconnaissance attacks at lower computational cost.

scholarly journals Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques

2021 ◽  
Vol 11 (6) ◽  
pp. 7745-7749
Author(s):  
M. F. Hyder ◽  
. Waseemullah ◽  
M. U. Farooq
Keyword(s):  
Network Architecture ◽  
Computational Cost ◽  
Moving Target ◽  
Centralized Control ◽  
Effective Protection ◽  
Moving Target Defense ◽  
Multiple Servers ◽  
Low Computational Cost ◽  
Sdn Controller ◽  
Control Management

Moving Target Defense (MTD) has recently emerged as a significant cybersecurity technique. Software-Defined Networking (SDN) has the capability to design efficient network architecture due to its programmability and centralized control management. In this paper, a mechanism for the protection against insider reconnaissance has been proposed using a combination of diversity and a shuffling-based approach of MTD. In order to implement the shuffling technique, IP shuffling is used in the insider network. The IP addresses of internal hosts are mapped via real to virtual IP mapping through random IP generation from a pseudo-random mechanism. For the diversity, a multiple servers’ platform is incorporated for different critical LAN services like Domain Name System (DNS), internal web services, etc. This combined diversity and shuffling approach significantly counters the insider reconnaissance targeting critical LAN services. The proposed scheme also exploited open-source IDS to block insider reconnaissance. The proposed solution was implemented using ONOS SDN controller, Mininet simulator, Snort IDS systems. The experimental results substantiate effective protection against insider network reconnaissance at a low computational cost.

scholarly journals CHAOS: An SDN-Based Moving Target Defense System

2017 ◽  
Vol 2017 ◽  
pp. 1-11 ◽  
Author(s):  
Yuan Shi ◽  
Huanguo Zhang ◽  
Juan Wang ◽  
Feng Xiao ◽  
Jianwei Huang ◽  
...  
Keyword(s):  
Information Disclosure ◽  
Experimental Results ◽  
Moving Target ◽  
Normal Flow ◽  
Defense System ◽  
Moving Target Defense ◽  
Network Defense ◽  
Tower Structure ◽  
Attack Surface ◽  
Sdn Controller

Moving target defense (MTD) has provided a dynamic and proactive network defense to reduce or move the attack surface that is available for exploitation. However, traditional network is difficult to realize dynamic and active security defense effectively and comprehensively. Software-defined networking (SDN) points out a brand-new path for building dynamic and proactive defense system. In this paper, we propose CHAOS, an SDN-based MTD system. Utilizing the programmability and flexibility of SDN, CHAOS obfuscates the attack surface including host mutation obfuscation, ports obfuscation, and obfuscation based on decoy servers, thereby enhancing the unpredictability of the networking environment. We propose the Chaos Tower Obfuscation (CTO) method, which uses the Chaos Tower Structure (CTS) to depict the hierarchy of all the hosts in an intranet and define expected connection and unexpected connection. Moreover, we develop fast CTO algorithms to achieve a different degree of obfuscation for the hosts in each layer. We design and implement CHAOS as an application of SDN controller. Our approach makes it very easy to realize moving target defense in networks. Our experimental results show that a network protected by CHAOS is capable of decreasing the percentage of information disclosure effectively to guarantee the normal flow of traffic.

TOTP Moving Target Defense for sensitive network services

2021 ◽  
pp. 101412
Author(s):  
Vitor A. Cunha ◽  
Daniel Corujo ◽  
Joao P. Barraca ◽  
Rui L. Aguiar
Keyword(s):  
Network Services ◽  
Moving Target ◽  
Moving Target Defense

scholarly journals On Event-Triggered Implementation of Moving Target Defense Control

2020 ◽  
Vol 53 (2) ◽  
pp. 3539-3544
Author(s):  
Tua A. Tamba ◽  
Bin Hu ◽  
Yul Y. Nazaruddin
Keyword(s):  
Moving Target ◽  
Moving Target Defense ◽  
Event Triggered
Sign in / Sign up

Export Citation Format

Share Document