research-article

Moving target defense (MTD) in an adaptive execution environment

Authors:

A. Paulos,

P. Pal,

R. Schantz,

B. BenyoAuthors Info & Claims

CSIIRW '13: Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop

Article No.: 62, Pages 1 - 4

https://doi.org/10.1145/2459976.2460045

Published: 08 January 2013 Publication History

Get Access

Abstract

This paper describes how adaptation support facilitated by an execution environment can be used to implement moving target defenses (MTD). Reactive and proactive use of adaptation, although beneficial for cyber defense, comes with additional cost, and therefore needs to be employed selectively. We also describe the pros and cons of using reactive and proactive adaptation for MTD for a representative sample of adaptations supported by an execution environment that we are developing.

References

[1]

M. Atighetchi, P. Pal et al., "Adaptive Cyberdefense for Survival and Intrusion Tolerance," IEEE Internet Computing, vol. 8, no. 6, pp. 25--33, Nov/Dec 2004

Digital Library

Google Scholar

[2]

P. Pal, P. Rubel et al., "An architecture for adaptive intrusion-tolerant applications," Software: Practice and Experience, vol. 36, no. 11-12, pp 1331--1354, Sep/Oct 2006

Digital Library

Google Scholar

[3]

Chapter 9: Data Communications, Cybersecurity and Information Privacy, In The Future of the Electric Grid, Massachusetts Institute of Technology, 2011

Google Scholar

[4]

P. Pal, R. Schantz, A. Paulos, J. Regehr, M. Hibler. "Advanced Adaptive Application (A3) Environment: initial experience," Proc. of the Middleware 2011 Industry Track, ACM, New York, NY, USA, 2011

Digital Library

Google Scholar

[5]

A. Paulos et al., "On the Feasibility of an Execution Environment for Adaptive Defenses against Attacks," submitted for publication, 2012

Google Scholar

[6]

CVE - CVE-2011-2369. Web. Retrieved 15 August 2012. <cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2369>

Google Scholar

[7]

H. Sacham, "The geometry of innocent flesh on the bone: Return-into-libc without function calls (on the x86)," Proc. of CCS 2007, pp 55--61. ACM Press, Oct. 2007

Digital Library

Google Scholar

[8]

PaX Team, Documentation for the PaX project, Address space layout randomization. Web. Retrieved 15 August 2012,<http://pax.grsecurity.net/docs/aslr.txt>.

Google Scholar

[9]

M. Franz, "E unibus pluram: massive-scale software diversity as a defense mechanism," Proc. of NSPW 2010, pp. 7--16. ACM Press. 2010

Digital Library

Google Scholar

Cited By

View all

Acosta JClarke LMedina SAkbar MShahriar Hossain MFree-Nelson F(2021)Repeatable Experimentation for Cybersecurity Moving Target DefenseSecurity and Privacy in Communication Networks10.1007/978-3-030-90019-9_5(82-99)Online publication date: 3-Nov-2021
https://doi.org/10.1007/978-3-030-90019-9_5
Devi BSubbulakshmi TBabu K(2018)A Survey of Security Models Using Effective Moving Target DefensesInternational Journal of Information Security and Privacy10.4018/IJISP.201807010712:3(123-140)Online publication date: 1-Jul-2018
https://dl.acm.org/doi/10.4018/IJISP.2018070107
Lei CZhang HTan JZhang YLiu X(2018)Moving Target Defense TechniquesSecurity and Communication Networks10.1155/2018/37596262018Online publication date: 22-Jul-2018
https://dl.acm.org/doi/10.1155/2018/3759626
Show More Cited By

Index Terms

Moving target defense (MTD) in an adaptive execution environment
1. Security and privacy
  1. Cryptography
    1. Cryptanalysis and other attacks
  2. Intrusion/anomaly detection and malware mitigation
2. Social and professional topics
  1. Computing / technology policy
    1. Computer crime

Recommendations

Comparison of Defense Effectiveness between Moving Target Defense and Cyber Deception Defense
DSIT 2021: 2021 4th International Conference on Data Science and Information Technology

Both moving target defense and cyber deception defense protect their systems and networks by increasing the uncertainty of information acquired by attackers. Moving target defense randomly changes the IP address, port, operating platform, and other ...
Moving Target Defense Against Injection Attacks
Algorithms and Architectures for Parallel Processing
Abstract
With the development of network technology, web services become more convenient and popular. However, web services are also facing serious security threats, especially SQL injection attack(SQLIA). Due to the diversity of attack techniques and the ...
A Model for Analyzing the Effectiveness of Moving Target Defense
ICCNS '18: Proceedings of the 8th International Conference on Communication and Network Security

Moving target defense(MTD) is a typical proactive cyber defense technology, which not only increases the difficulty of the attacker, but also reduces the damage caused by successful attacks. A number of studies have assessed the defensive effectiveness ...

Comments

Information & Contributors

Information

Published In

CSIIRW '13: Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop

January 2013

282 pages

ISBN:9781450316873

DOI:10.1145/2459976

Editors:
Frederick Sheldon
Oak Ridge National Laboratory
,
Annarita Giani
Los Alamos National Laboratory
,
Axel Krings
University of Idaho
,
Robert Abercrombie
Oak Ridge National Laboratory

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 08 January 2013

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

CSIIRW '13

Sponsor:

Los Alamos National Labs
Sandia National Labs
DOE
Lawrence Livermore National Lab.
BERKELEYLAB
Argonne Natl Lab
Idaho National Lab.
Nevada National Security Site

CSIIRW '13: Cyber Security and Information Intelligence

January 8 - 10, 2013

Tennessee, Oak Ridge, USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

8
Total Citations
View Citations
310
Total Downloads

Downloads (Last 12 months)6
Downloads (Last 6 weeks)1

Reflects downloads up to 15 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Acosta JClarke LMedina SAkbar MShahriar Hossain MFree-Nelson F(2021)Repeatable Experimentation for Cybersecurity Moving Target DefenseSecurity and Privacy in Communication Networks10.1007/978-3-030-90019-9_5(82-99)Online publication date: 3-Nov-2021
https://doi.org/10.1007/978-3-030-90019-9_5
Devi BSubbulakshmi TBabu K(2018)A Survey of Security Models Using Effective Moving Target DefensesInternational Journal of Information Security and Privacy10.4018/IJISP.201807010712:3(123-140)Online publication date: 1-Jul-2018
https://dl.acm.org/doi/10.4018/IJISP.2018070107
Lei CZhang HTan JZhang YLiu X(2018)Moving Target Defense TechniquesSecurity and Communication Networks10.1155/2018/37596262018Online publication date: 22-Jul-2018
https://dl.acm.org/doi/10.1155/2018/3759626
Zhou YNi WZheng KLiu RYang Y(2017)Scalable Node-Centric Route Mutation for Defense of Large-Scale Software-Defined NetworksSecurity and Communication Networks10.1155/2017/46513952017Online publication date: 1-Jan-2017
https://dl.acm.org/doi/10.1155/2017/4651395
Zhou YNi WZheng KLiu RYang Y(2017)Node-centric route mutation for large-scale SDN based on 3D earth mover's distance model2017 17th International Symposium on Communications and Information Technologies (ISCIT)10.1109/ISCIT.2017.8261239(1-6)Online publication date: Sep-2017
https://doi.org/10.1109/ISCIT.2017.8261239
Hong JKim D(2016)Assessing the Effectiveness of Moving Target Defenses Using Security ModelsIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2015.244379013:2(163-177)Online publication date: 1-Mar-2016
https://dl.acm.org/doi/10.1109/TDSC.2015.2443790
Pal PSchantz RPaulos ABenyo B(2014)Managed Execution Environment as a Moving-Target Defense InfrastructureIEEE Security & Privacy10.1109/MSP.2013.13312:2(51-59)Online publication date: Mar-2014
https://doi.org/10.1109/MSP.2013.133
Hong JKim D(2014)Scalable Security Models for Assessing Effectiveness of Moving Target DefensesProceedings of the 2014 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks10.1109/DSN.2014.54(515-526)Online publication date: 23-Jun-2014
https://dl.acm.org/doi/10.1109/DSN.2014.54

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Comparison of Defense Effectiveness between Moving Target Defense and Cyber Deception Defense

Moving Target Defense Against Injection Attacks

A Model for Analyzing the Effectiveness of Moving Target Defense

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations