TY - GEN
T1 - A Preventative Moving Target Defense Solution for Web Servers Using Iptables
AU - Wright-Hamor, Cimone
AU - Bisinger, Steffanie
AU - Neel, Jeffrey
AU - Blakely, Benjamin
AU - Evans, Nathaniel
N1 - Publisher Copyright:
© 2023, The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
PY - 2023
Y1 - 2023
N2 - Web servers are targets for cyberattacks because they contain valuable information, which could facilitate interactions with another system or damage an organization’s reputation. In the last two decades, Moving Target Defense (MTD) research has gained attention as a cyber resilient technique to mitigate cyber threats. However, most MTD work focuses on the network layer, and there is not much work to support the service layer. This research is an experimental evaluation of Dynamic Application Rotational Environment (DARE) and Dare IMproved (DIM). DIM is an enhanced version of DARE that leverages a host-based firewall to rotate between web servers located on the same host. The main contribution of this work is furthering the understanding of implementing a centralized host-based MTD architecture for web servers. Results show that DIM can maintain availability while thwarting attacks, whereas DARE limits the availability of the web server.
AB - Web servers are targets for cyberattacks because they contain valuable information, which could facilitate interactions with another system or damage an organization’s reputation. In the last two decades, Moving Target Defense (MTD) research has gained attention as a cyber resilient technique to mitigate cyber threats. However, most MTD work focuses on the network layer, and there is not much work to support the service layer. This research is an experimental evaluation of Dynamic Application Rotational Environment (DARE) and Dare IMproved (DIM). DIM is an enhanced version of DARE that leverages a host-based firewall to rotate between web servers located on the same host. The main contribution of this work is furthering the understanding of implementing a centralized host-based MTD architecture for web servers. Results show that DIM can maintain availability while thwarting attacks, whereas DARE limits the availability of the web server.
UR - http://www.scopus.com/inward/record.url?scp=85151082336&partnerID=8YFLogxK
U2 - 10.1007/978-981-19-6414-5_11
DO - 10.1007/978-981-19-6414-5_11
M3 - Conference contribution
AN - SCOPUS:85151082336
SN - 9789811964138
T3 - Springer Proceedings in Complexity
SP - 191
EP - 205
BT - Proceedings of the International Conference on Cybersecurity, Situational Awareness and Social Media - Cyber Science 2022
A2 - Onwubiko, Cyril
A2 - Rosati, Pierangelo
A2 - Rege, Aunshul
A2 - Erola, Arnau
A2 - Bellekens, Xavier
A2 - Hindy, Hanan
A2 - Jaatun, Martin Gilje
PB - Springer Science and Business Media B.V.
T2 - International Conference on Cybersecurity, Situational Awareness, and Social Media, Cyber Science 2022
Y2 - 20 June 2022 through 21 June 2022
ER -