An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process

EAI Endorsed Trans. Security Safety Pub Date : 2018-01-04 DOI:10.4108/eai.4-1-2018.153527

Chu Huang, Sencun Zhu, Yi Yang

{"title":"An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process","authors":"Chu Huang, Sencun Zhu, Yi Yang","doi":"10.4108/eai.4-1-2018.153527","DOIUrl":null,"url":null,"abstract":"A Moving Target Defense (MTD)-enabled system is one which can dynamically and rapidly change its properties and code such that the attackers do not have sufficient time to exploit it. Although a variety of MTD systems have been proposed, fewwork has focused on assessing the relative cost-effectiveness of differentMTD approaches. In this paper, based on a generic MTD theory, we propose five general evaluation metrics and an assessment framework on top of Analytic Hierarchy Process (AHP), which aggregates these five metrics and systematically evaluates/compares security strengths and costs of multiple MTD-based approaches in the same category. This framework could be widely used in different MTD categories under various attacks and it will enable a security specialist to choose the best MTD approach from a set of possible alternatives based on his/her goal and understanding of the problem. A detailed case study on a specific MTD category called software diversification validates the effectiveness of this framework. Our evaluation results rank three software diversity algorithms and choose the best one among three based on problem setting and situation constraints. Received on XXXX; accepted on XXXX; published on XXXX","PeriodicalId":335727,"journal":{"name":"EAI Endorsed Trans. Security Safety","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-01-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"EAI Endorsed Trans. Security Safety","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4108/eai.4-1-2018.153527","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

A Moving Target Defense (MTD)-enabled system is one which can dynamically and rapidly change its properties and code such that the attackers do not have sufficient time to exploit it. Although a variety of MTD systems have been proposed, fewwork has focused on assessing the relative cost-effectiveness of differentMTD approaches. In this paper, based on a generic MTD theory, we propose five general evaluation metrics and an assessment framework on top of Analytic Hierarchy Process (AHP), which aggregates these five metrics and systematically evaluates/compares security strengths and costs of multiple MTD-based approaches in the same category. This framework could be widely used in different MTD categories under various attacks and it will enable a security specialist to choose the best MTD approach from a set of possible alternatives based on his/her goal and understanding of the problem. A detailed case study on a specific MTD category called software diversification validates the effectiveness of this framework. Our evaluation results rank three software diversity algorithms and choose the best one among three based on problem setting and situation constraints. Received on XXXX; accepted on XXXX; published on XXXX

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

基于层次分析法的移动目标防御评价框架

启用移动目标防御(MTD)的系统可以动态快速地更改其属性和代码，使攻击者没有足够的时间利用它。尽管已经提出了各种MTD系统，但很少有人关注于评估不同MTD方法的相对成本效益。本文在通用MTD理论的基础上，提出了5个通用的评价指标，并在层次分析法(AHP)的基础上提出了一个评价框架，该框架综合了这5个指标，系统地评价/比较了同一类别中基于MTD的多种方法的安全强度和成本。这个框架可以广泛用于各种攻击下的不同MTD类别，它将使安全专家能够根据他/她的目标和对问题的理解，从一组可能的替代方案中选择最佳的MTD方法。对称为软件多样化的特定MTD类别的详细案例研究验证了该框架的有效性。我们的评估结果对三种软件多样性算法进行了排序，并根据问题设置和情境约束在三种算法中选择了最佳算法。XXXX年收到;XXXX日验收;发表于XXXX

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

EAI Endorsed Trans. Security Safety

自引率

0.00%

发文量