A cost-sensitive move selection strategy for moving target defense. Issue 75 (June 2018)
- Record Type:
- Journal Article
- Title:
- A cost-sensitive move selection strategy for moving target defense. Issue 75 (June 2018)
- Main Title:
- A cost-sensitive move selection strategy for moving target defense
- Authors:
- Zangeneh, Vahid
Shajari, Mehdi - Abstract:
- Abstract: The effectiveness and the cost-sensitivity of moving target defense (MTD) strategies have not been studied thoroughly in previous research. In this paper, we propose a hybrid MTD model that considers the defender's preferences to shift the attack surfaces more effectively in a cost-sensitive manner by incorporating event- and time-based move selection engines. We model the protected system as a state machine where the states are the attack surfaces with their security levels which are determined by utilizing the Bayesian attack graph (BAG) as a dynamic risk assessment tool. In the event-based engine, the competitive Markov decision process (CMDP) is employed to find the proper moves for each possible state of the protected system. Moreover, the proposed time-based engine shifts the attack surface based on the history of the received alerts to maintain the unpredictability of the attack surface. The simulations demonstrate that the hybrid strategy outperforms other common strategies with regard to thwarting attacks in a cost-sensitive manner.
- Is Part Of:
- Computers & security. Issue 75(2018)
- Journal:
- Computers & security
- Issue:
- Issue 75(2018)
- Issue Display:
- Volume 75, Issue 75 (2018)
- Year:
- 2018
- Volume:
- 75
- Issue:
- 75
- Issue Sort Value:
- 2018-0075-0075-0000
- Page Start:
- 72
- Page End:
- 91
- Publication Date:
- 2018-06
- Subjects:
- Moving target defense -- Cost-sensitivity -- Bayesian attack graph -- Competitive Markov decision process -- Attack surface
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2017.12.013 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 11319.xml