TY - GEN
T1 - Multiple OS rotational environment an implemented Moving Target Defense
AU - Thompson, Michael
AU - Evans, Nathaniel
AU - Kisekka, Victoria
N1 - Publisher Copyright:
© 2014 IEEE.
PY - 2014/9/16
Y1 - 2014/9/16
N2 - Cyber-attacks continue to pose a major threat to existing critical infrastructure. Although suggestions for defensive strategies abound, Moving Target Defense (MTD) has only recently gained attention as a possible solution for mitigating cyber-attacks. The current work proposes a MTD technique that provides enhanced security through a rotation of multiple operating systems. The MTD solution developed in this research utilizes existing technology to provide a feasible dynamic defense solution that can be deployed easily in a real networking environment. In addition, the system we developed was tested extensively for effectiveness using CORE Impact Pro (CORE), Nmap, and manual penetration tests. The test results showed that platform diversity and rotation offer improved security. In addition, the likelihood of a successful attack decreased proportionally with time between rotations.
AB - Cyber-attacks continue to pose a major threat to existing critical infrastructure. Although suggestions for defensive strategies abound, Moving Target Defense (MTD) has only recently gained attention as a possible solution for mitigating cyber-attacks. The current work proposes a MTD technique that provides enhanced security through a rotation of multiple operating systems. The MTD solution developed in this research utilizes existing technology to provide a feasible dynamic defense solution that can be deployed easily in a real networking environment. In addition, the system we developed was tested extensively for effectiveness using CORE Impact Pro (CORE), Nmap, and manual penetration tests. The test results showed that platform diversity and rotation offer improved security. In addition, the likelihood of a successful attack decreased proportionally with time between rotations.
KW - insert
UR - http://www.scopus.com/inward/record.url?scp=84908682028&partnerID=8YFLogxK
U2 - 10.1109/ISRCS.2014.6900086
DO - 10.1109/ISRCS.2014.6900086
M3 - Conference contribution
AN - SCOPUS:84908682028
T3 - 7th International Symposium on Resilient Control Systems, ISRCS 2014
BT - 7th International Symposium on Resilient Control Systems, ISRCS 2014
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 7th International Symposium on Resilient Control Systems, ISRCS 2014
Y2 - 19 August 2014 through 21 August 2014
ER -