Finding focus in the blur of moving-target techniques

IEEE Security and Privacy

Volumn 12, Issue 2, 2014, Pages 16-26

  Okhravi, Hamed ^a   Hobson, Thomas ^a   Bigelow, David ^a   Streilein, William ^a  

^a MIT LINCOLN LABORATORY   (United States)

Author keywords

ASLR; Cyber moving target; Dynamic data; Dynamic network; Dynamic platform; Dynamic runtime environment; Dynamic software; Moving target; Reconnaissance

Indexed keywords

ELECTRICAL ENGINEERING;

ASLR; CYBER MOVING TARGETS; DYNAMIC DATA; DYNAMIC NETWORK; DYNAMIC SOFTWARES; MOVING TARGETS; RECONNAISSANCE; RUNTIME ENVIRONMENTS;

COMPUTER NETWORKS;

EID: 84899526686     PISSN: 15407993     EISSN: None     Source Type: Journal    
DOI: 10.1109/MSP.2013.137     Document Type: Article

References (15)

1. "Cybersecurity Game-Change Research & Development Recommendations," Networking and Information Technology Research and Development Program, May 2010; www.nitrd.gov/pubs/ CSIAIWG%20Cybersecurity%20GameChangeRD%20Recommendations20100513.pdf.
2. M. Carvalho et al., "Command and Control Requirements for Moving-Target Defense," IEEE Intelligent Systems, vol. 27, no. 3, 2012, pp. 79-85.
3. R. Colbaugh and K. Glass, "Predictability-Oriented Defense against Adaptive Adversaries," Proc. IEEE Int'l Conf. Systems, Man, and Cybernetics (SMC 12), 2012, pp. 2721-2727.
4. S. Jajodia et al., eds., Moving Target Defense: Creating Asymmetric Uncertainty for Cyber Threats, Springer, 2011.
5. S. Jajodia et al., eds., Moving Target Defense II: Application of Game Theory and Adversarial Modeling, Springer, 2012.
6. D. Kewley et al., "Dynamic Approaches to Thwart Adversary Intelligence Gathering," Proc. DARPA Information Survivability Conference and Exposition II (DISCEX 01), vol. 1, 2001, pp. 176-185.
7. J. Li, P. Reiher, and G.J. Popek, "Resilient Self-Organizing Overlay Networks for Security Update Delivery," IEEE J. Selected Areas in Communications, vol. 22, no. 1, 2004, pp. 189-202.
8. H. Okhravi et al., "Creating a Cyber Moving Target for Critical Infrastructure Applications Using Platform Diversity," Int'l J. Critical Infrastructure Protection, vol. 5, no. 1, 2012, pp. 30-39.
9. B. Cox et al., "N-Variant Systems: A Secretless Framework for Security through Diversity," Proc. 15th Usenix Security Symp., 2006, pp. 105-120.
10. G.S. Kc, A.D. Keromytis, and V. Prevelakis, "Countering Code-Injection Attacks with Instruction-Set Randomization," Proc. 10th ACM Conf. Computer and Communications Security (CCS 03), 2003, pp. 272-280. (Pubitemid 40673809)
11. L. Szekeres et al., "SoK: Eternal War in Memory," Proc. IEEE Symp. Security and Privacy, 2013, pp. 48-62.
12. B. Salamat et al., "Runtime Defense against Code Injection Attacks Using Replicated Execution," IEEE Trans. Dependable and Secure Computing, vol. 8, no. 4, 2011, pp. 588-601.
13. C. Le Goues et al., "GenProg: A Generic Method for Automatic Software Repair," IEEE Trans. Software Eng., vol. 38, no. 1, 2012, pp. 54-72.
14. P.E. Ammann and J.C. Knight, "Data Diversity: An Approach to Software Fault Tolerance," IEEE Trans. Computers, vol. 37, no. 4, 1988, pp. 418-425.
15. C. Cadar et al., Data Randomization, tech. report MSRTR- 2008-120, Microsoft Research, Sept. 2008.