| Summary: | Moving target defense is a new way to change the asymmetry state between attack and defense, by dynamically moving target’s attacking surface. Frequency conversion of MTD is of great importance for the weighing between usability, security and defense cost. Nowadays, however, frequency conversion is usually determined by manager’s experience, which cannot create a balance between usability and security cost for the lack of theory basis. An adaptive moving target defense framework(AMTD)was proposed. AMTD can maximize system security at the lowest cost while ensuring that the system is available. The adaptability of AMTD has two modes. Firstly, the defense mode, it contains an adaptive conversion strategy to provide reacting defense triggered by security alerts and active defense triggered by timer expiration events. The other mode is the frequency conversion, which obtain the optimal conversion frequency by establishing mathematical models. Four series of simulation experiments were taken to verify the effectiveness of the solution.
|
|---|