TY - CHAP
T1 - Moving target, deception, and other adaptive defenses
AU - Blakely, Benjamin
AU - Horsthemke, William
AU - Poczatec, Alec
AU - Nowak, Lovie
AU - Evans, Nathaniel
N1 - Publisher Copyright:
© Springer Nature Switzerland AG 2019.
PY - 2019
Y1 - 2019
N2 - Moving target defenses raise the cost of an attack to make it more difficult or infeasible. Strategies to do so include implementing diversity, movement, and obfuscation at the platform, network, runtime environment, application, or data layer. Doing so, however, often requires an investment in software, hardware, procedure, or overhead (such as training) and can also increase the complexity of infrastructures being defended. In industrial control system contexts, this complexity and its impact upon performance and reliability might present obstacles to implement such defensive technologies. As the scope of possible domains for introducing moving target defense concepts is now well-defined and the considerations are largely enumerated, consideration must additionally be given to systems that can dynamically select optimal strategies in response to attacks. In this chapter, we will survey the foundations, principles, and domains of moving target defense, consider specific implementation examples, and evaluate the considerations for implementing deceptive and responsive strategies in industrial control systems applications.
AB - Moving target defenses raise the cost of an attack to make it more difficult or infeasible. Strategies to do so include implementing diversity, movement, and obfuscation at the platform, network, runtime environment, application, or data layer. Doing so, however, often requires an investment in software, hardware, procedure, or overhead (such as training) and can also increase the complexity of infrastructures being defended. In industrial control system contexts, this complexity and its impact upon performance and reliability might present obstacles to implement such defensive technologies. As the scope of possible domains for introducing moving target defense concepts is now well-defined and the considerations are largely enumerated, consideration must additionally be given to systems that can dynamically select optimal strategies in response to attacks. In this chapter, we will survey the foundations, principles, and domains of moving target defense, consider specific implementation examples, and evaluate the considerations for implementing deceptive and responsive strategies in industrial control systems applications.
UR - http://www.scopus.com/inward/record.url?scp=85072079623&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-18214-4_6
DO - 10.1007/978-3-030-18214-4_6
M3 - Chapter
AN - SCOPUS:85072079623
T3 - Advances in Information Security
SP - 95
EP - 118
BT - Advances in Information Security
PB - Springer New York LLC
ER -