poster

Quantitative Security Assessment Method based on Entropy for Moving Target Defense

Authors:

Zhen Xu,

Meng LiAuthors Info & Claims

ASIA CCS '17: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security

Pages 920 - 922

https://doi.org/10.1145/3052973.3055161

Published: 02 April 2017 Publication History

Get Access

Abstract

Moving Target Defense(MTD) provides a promising solution to reduce the chance of weakness exposure by constantly changing the target's attack surface. Though lots of MTD technologies have been researched to defend network attacks, there is little systematic study on security assessment of MTD. This paper proposes a novel method to quantify the security of MTD system which based on three factors: Vulnerability Entropy, Attack Entropy and Attenuation Entropy. This assessment model provides a theoretical and practical guidance for building MTD system and improving MTD technology.

References

[1]

S. Jajodia et al., Moving-Target Defense: Creating Asymmetric Uncertainty for Cyber Threats, Springer(2011)

Digital Library

Google Scholar

[2]

Shacham, Hovav, et al. On the effectiveness of address-space randomization. the 11th ACM conference on Computer and communications security.(2004).

Digital Library

Google Scholar

[3]

Gaurav S. Kc et al. Countering Code-Injection Attacks with Instruction-Set Randomization. In 10th ACM Conference on Computer and Communications Security (CCS)(2003)

Digital Library

Google Scholar

[4]

A. Nguyen-Tuong et al., Security through Redundant Data Diversity. Proc. IEEE Int'l Conf. Dependable Systems and Networks with FTCS and DCC(2008).

Google Scholar

[5]

Xu, Jun, et al. Comparing Different Moving Target Defense Techniques. Proceedings of the First ACM Workshop on Moving Target Defense. ACM(2014).

Digital Library

Google Scholar

[6]

Manadhata P K, Wing J M. A formal model for a system's attack surface{M}. Springer New York(2011)

Google Scholar

Cited By

View all

Ma DTang ZSun XGuo LWang LChen KOkhravi HWang C(2022)Game Theory Approaches for Evaluating the Deception-based Moving Target DefenseProceedings of the 9th ACM Workshop on Moving Target Defense10.1145/3560828.3563995(67-77)Online publication date: 11-Nov-2022
https://dl.acm.org/doi/10.1145/3560828.3563995
TONG QGUO YHU HLIU WCHENG GLI L(2019)A Diversity Metric Based Study on the Correlation between Diversity and SecurityIEICE Transactions on Information and Systems10.1587/transinf.2018EDP7414E102.D:10(1993-2003)Online publication date: 1-Oct-2019
https://doi.org/10.1587/transinf.2018EDP7414
Xu SJi XLiu W(2019)Enhancing the Reliability of NFV with Heterogeneous Backup2019 IEEE 3rd Information Technology, Networking, Electronic and Automation Control Conference (ITNEC)10.1109/ITNEC.2019.8729059(923-927)Online publication date: Mar-2019
https://doi.org/10.1109/ITNEC.2019.8729059
Show More Cited By

Index Terms

Quantitative Security Assessment Method based on Entropy for Moving Target Defense
1. Security and privacy
  1. Network security

Recommendations

Towards a Theory of Moving Target Defense
MTD '14: Proceedings of the First ACM Workshop on Moving Target Defense

The static nature of cyber systems gives attackers the advantage of time. Fortunately, a new approach, called the Moving Target Defense (MTD) has emerged as a potential solution to this problem. While promising, there is currently little research to ...
Moving Target Defense Against Injection Attacks
Algorithms and Architectures for Parallel Processing
Abstract
With the development of network technology, web services become more convenient and popular. However, web services are also facing serious security threats, especially SQL injection attack(SQLIA). Due to the diversity of attack techniques and the ...
Insider Threat Mitigation Using Moving Target Defense and Deception
MIST '17: Proceedings of the 2017 International Workshop on Managing Insider Security Threats

The insider threat has been subject of extensive study and many approaches from technical perspective to behavioral perspective and psychological perspective have been proposed to detect or mitigate it. However, it still remains one of the most ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

ASIA CCS '17: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security

April 2017

952 pages

ISBN:9781450349444

DOI:10.1145/3052973

General Chairs:
Ramesh Karri
New York University, New York, USA
,
Ozgur Sinanoglu
New York University Abu Dhabi, UAE
,
Program Chairs:
Ahmad-Reza Sadeghi
Technische Universität Darmstadt, Germany
,
Xun Yi
RMIT University, Australia

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 02 April 2017

Check for updates

Author Tags

Qualifiers

Poster

Funding Sources

the Strategic Priority Research Program of CAS
863 Program of China
Zhengzhou Science and Technology Talents
973 Program of China

Conference

ASIA CCS '17

Sponsor:

SIGSAC

ASIA CCS '17: ACM Asia Conference on Computer and Communications Security

April 2 - 6, 2017

Abu Dhabi, United Arab Emirates

Acceptance Rates

ASIA CCS '17 Paper Acceptance Rate 67 of 359 submissions, 19%;

Overall Acceptance Rate 418 of 2,322 submissions, 18%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
209
Total Downloads

Downloads (Last 12 months)10
Downloads (Last 6 weeks)2

Reflects downloads up to 27 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Ma DTang ZSun XGuo LWang LChen KOkhravi HWang C(2022)Game Theory Approaches for Evaluating the Deception-based Moving Target DefenseProceedings of the 9th ACM Workshop on Moving Target Defense10.1145/3560828.3563995(67-77)Online publication date: 11-Nov-2022
https://dl.acm.org/doi/10.1145/3560828.3563995
TONG QGUO YHU HLIU WCHENG GLI L(2019)A Diversity Metric Based Study on the Correlation between Diversity and SecurityIEICE Transactions on Information and Systems10.1587/transinf.2018EDP7414E102.D:10(1993-2003)Online publication date: 1-Oct-2019
https://doi.org/10.1587/transinf.2018EDP7414
Xu SJi XLiu W(2019)Enhancing the Reliability of NFV with Heterogeneous Backup2019 IEEE 3rd Information Technology, Networking, Electronic and Automation Control Conference (ITNEC)10.1109/ITNEC.2019.8729059(923-927)Online publication date: Mar-2019
https://doi.org/10.1109/ITNEC.2019.8729059
Li JWu JLu X(2018)Democratic Supervision Makes Controls in Software-Defined Networks More Secure2018 IEEE 4th International Conference on Computer and Communications (ICCC)10.1109/CompComm.2018.8781034(1175-1179)Online publication date: Dec-2018
https://doi.org/10.1109/CompComm.2018.8781034

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Towards a Theory of Moving Target Defense

Moving Target Defense Against Injection Attacks

Insider Threat Mitigation Using Moving Target Defense and Deception

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations