Modern mission-critical systems (MCS) are increasingly softwarized and interconnected. As a result, their complexity increased, and so their vulnerability against cyber-attacks. The current adoption of virtualization and service-oriented architectures (SOA) in MCSs provides additional flexibility that can be leveraged to withstand and mitigate attacks, e.g., by moving critical services or data flows. This enables the deployment of strategies for moving target defense (MTD), which allows stripping attackers of their asymmetric advantage from the long reconnaissance of MCSs. However, it is challenging to design MTD strategies, given the diverse threat landscape, resource limitations, and potential degradation in service availability. In this paper, we combine two optimization models to explore feasible service configurations for SOA-based systems and to derive subsequent MTD actions with their time schedule based on an attacker-defender game. Our results indicate that even for challenging and diverse attack scenarios, our models can defend the system by up to 90% of the system operation time with a limited MTD defender budget.
翻译:现代任务关键系统(MCS)越来越软件化和互联。因此,它们的复杂性增加,而它们对网络攻击的脆弱性也增加。当前在MCS中采用虚拟化和面向服务的架构(SOA)提供了额外的灵活性,可以利用其以承受和减轻攻击,例如移动关键服务或数据流。这使得可以部署移动靶防御(MTD)策略,从而使攻击者失去他们从对MCS进行长时间侦察的不对称优势。然而,设计MTD策略具有挑战性,鉴于各种威胁形式、资源限制和可能导致服务可用性降级的情况。在本文中,我们结合了两个优化模型,探索基于SOA的系统的可行服务配置,并根据攻防博弈推导出其后续的MTD行动及其时间表。我们的结果表明,即使在具有挑战性和多样化的攻击情景下,我们的模型也可以通过有限的MTD防御者预算在90%的系统运行时间内保护系统。
相关内容
微信扫码咨询专知VIP会员