An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process
A Moving Target Defense (MTD)-enabled system is one which can dynamically and rapidly change its properties and code such that the attackers do not have sufficient time to exploit it. Although a variety of MTD systems have been proposed, few work has focused on assessing the relative cost-effectiven...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
European Alliance for Innovation (EAI)
2018-01-01
|
| Series: | EAI Endorsed Transactions on Security and Safety |
| Subjects: | |
| Online Access: | http://eudl.eu/doi/10.4108/eai.4-1-2018.153527 |
| _version_ | 1819011884602359808 |
|---|---|
| author | Chu Huang Sencun Zhu Yi Yang |
| author_facet | Chu Huang Sencun Zhu Yi Yang |
| author_sort | Chu Huang |
| collection | DOAJ |
| description | A Moving Target Defense (MTD)-enabled system is one which can dynamically and rapidly change its properties and code such that the attackers do not have sufficient time to exploit it. Although a variety of MTD systems have been proposed, few work has focused on assessing the relative cost-effectiveness of different MTD approaches. In this paper, based on a generic MTD theory, we propose five general evaluation metrics and an assessment framework on top of Analytic Hierarchy Process (AHP), which aggregates these five metrics and systematically evaluates/compares security strengths and costs of multiple MTD-based approaches in the same category. This framework could be widely used in different MTD categories under various attacks and it will enable a security specialist to choose the best MTD approach from a set of possible alternatives based on his/her goal and understanding of the problem. A detailed case study on a specific MTD category called software diversification validates the effectiveness of this framework. Our evaluation results rank three software diversity algorithms and choose the best one among three based on problem setting and situation constraints. |
| first_indexed | 2024-12-21T01:35:15Z |
| format | Article |
| id | doaj.art-11755b50cdc34961a0210957c8159f46 |
| institution | Directory Open Access Journal |
| issn | 2032-9393 |
| language | English |
| last_indexed | 2024-12-21T01:35:15Z |
| publishDate | 2018-01-01 |
| publisher | European Alliance for Innovation (EAI) |
| record_format | Article |
| series | EAI Endorsed Transactions on Security and Safety |
| spelling | doaj.art-11755b50cdc34961a0210957c8159f462022-12-21T19:20:16ZengEuropean Alliance for Innovation (EAI)EAI Endorsed Transactions on Security and Safety2032-93932018-01-0141311210.4108/eai.4-1-2018.153527An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy ProcessChu Huang0Sencun Zhu1Yi Yang2Pennsylvania State University, University Park, PA 16802, USAPennsylvania State University, University Park, PA 16802, USAFontbonne University, St. Louis, MO 63105, USA; yyang@fontbonne.eduA Moving Target Defense (MTD)-enabled system is one which can dynamically and rapidly change its properties and code such that the attackers do not have sufficient time to exploit it. Although a variety of MTD systems have been proposed, few work has focused on assessing the relative cost-effectiveness of different MTD approaches. In this paper, based on a generic MTD theory, we propose five general evaluation metrics and an assessment framework on top of Analytic Hierarchy Process (AHP), which aggregates these five metrics and systematically evaluates/compares security strengths and costs of multiple MTD-based approaches in the same category. This framework could be widely used in different MTD categories under various attacks and it will enable a security specialist to choose the best MTD approach from a set of possible alternatives based on his/her goal and understanding of the problem. A detailed case study on a specific MTD category called software diversification validates the effectiveness of this framework. Our evaluation results rank three software diversity algorithms and choose the best one among three based on problem setting and situation constraints.http://eudl.eu/doi/10.4108/eai.4-1-2018.153527Moving Target DefenseAnalytic Hierarchy ProcessEvaluation and Comparison |
| spellingShingle | Chu Huang Sencun Zhu Yi Yang An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process EAI Endorsed Transactions on Security and Safety Moving Target Defense Analytic Hierarchy Process Evaluation and Comparison |
| title | An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process |
| title_full | An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process |
| title_fullStr | An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process |
| title_full_unstemmed | An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process |
| title_short | An Evaluation Framework for Moving Target Defense Based on Analytic Hierarchy Process |
| title_sort | evaluation framework for moving target defense based on analytic hierarchy process |
| topic | Moving Target Defense Analytic Hierarchy Process Evaluation and Comparison |
| url | http://eudl.eu/doi/10.4108/eai.4-1-2018.153527 |
| work_keys_str_mv | AT chuhuang anevaluationframeworkformovingtargetdefensebasedonanalytichierarchyprocess AT sencunzhu anevaluationframeworkformovingtargetdefensebasedonanalytichierarchyprocess AT yiyang anevaluationframeworkformovingtargetdefensebasedonanalytichierarchyprocess AT chuhuang evaluationframeworkformovingtargetdefensebasedonanalytichierarchyprocess AT sencunzhu evaluationframeworkformovingtargetdefensebasedonanalytichierarchyprocess AT yiyang evaluationframeworkformovingtargetdefensebasedonanalytichierarchyprocess |