| 基于平均任务失效时间和任务完成时间的移动目标防御技术效能量化分析 |
| |
| 作者姓名: | 陈志 常晓林 杨润垲 韩臻 |
| |
| 作者单位: | 北京交通大学计算机与信息技术学院 智能交通数据安全与隐私保护技术北京市重点实验室 北京 中国 100044 |
| |
| 基金项目: | 本课题得到国家自然科学基金(No.U1836105)资助。 |
| |
| 摘 要: | 移动目标防御(MTD)通过不断的变换系统攻击面,增加系统的不确定性,限制攻击者探索系统的弱点,从而有效降低系统被攻击的可能.随着信息系统的发展和新漏洞的不断增加,且传统防御方法存在天然的时间劣势无法抵御新型攻击,MTD越来越受到关注.本文旨在量化分析MTD环境中关键任务的安全性和性能.本文使用攻击者攻击成功概率作为系统...
|
| 关 键 词: | 动态平台技术 移动目标防御 马尔可夫链 平均失效时间 性能 |
| 收稿时间: | 2020/12/22 0:00:00 |
| 修稿时间: | 2021/3/26 0:00:00 |
Effectiveness and Performance Analysis of Moving Target Defense System:MTTF and Job Completion Time Perspectives |
| |
| Authors: | CHEN Zhi CHANG Xiaolin YANG Runkai HAN Zhen |
| |
| Affiliation: | Beijing key Laboratory of Intelligent Transporation Data Security and Pavacy Protection Technology School of Computer and Information Technology, Beijing Jiaotong University, Beijing 100044, China |
| |
| Abstract: | Moving Target Defense (MTD) technology protects a target system by creating asymmetric uncertainty of the target system to confuse the adversaries and increase the complexity of attacks. It has been gaining more and more attention with the massive growth of vulnerabilities and the widespread deployment of critical network services and traditional defense technology has a natural time disadvantage. This paper aims to quantitatively analyze both the effectiveness and performance of an MTD enabled system. We use the probability of successful attack as the security metric. As for performance metrics, Mean Time To Failure (MTTF) and Job Completion Time (JCT) are used to evaluate long-term and short-term running job in the MTD protected system, respectively. The system in this paper consists of multiple Physical Machines (PM) and each PM hosts a virtualized environment (containers or virtual machines), each of which can run a critical job under attack from adversaries. It applies Dynamic Platform Technique (DPT), a kind of MTD implementation techniques, to reduce the impact of attacks on job performance. The DPT actively divides the running process of a critical job into multiple stages, and randomly selects the operating platform of each stage to reduce the probability of the job being discovered and destroyed by the attackers. We propose a stochastic model which captures job execution behaviours in the system. Our model-based approach allows both job residency/execution time at a PM and job migration time to be generally distributed which releases the exponential distributed time assumption in other related analysis models. We derive the closed-form solutions of job MTTF (for long-term jobs) and JCT (for short-term jobs) which are the main evaluation metrics in this paper. Simulation experiments are carried out to validate our model and formulas. Moreover, a formula is proposed to predict the total cost of the system, which helps administrators manage the system effectively. |
| |
| Keywords: | dynamic platform technique moving target defense Markov chain mean time to failure performance |
| 本文献已被 维普 等数据库收录! |
| 点击此处可从《》浏览原始摘要信息 |
|
点击此处可从《》下载全文 |
