Rights statement: © ACM, 2022. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security http://doi.acm.org/10.1145/3548606.3563514
Accepted author manuscript, 521 KB, PDF document
Available under license: CC BY-NC: Creative Commons Attribution-NonCommercial 4.0 International License
Final published version
Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
}
TY - GEN
T1 - Poster: Effectiveness of Moving Target Defense Techniques to Disrupt Attacks in the Cloud
AU - Manzoor, Salman
AU - Gouglidis, Antonios
AU - Bradbury, Matthew
AU - Suri, Neeraj
N1 - © ACM, 2022. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security http://doi.acm.org/10.1145/3548606.3563514
PY - 2022/11/7
Y1 - 2022/11/7
N2 - Moving Target Defense (MTD) can eliminate the asymmetric advantage that attackers have in terms of time to explore a static system by changing a system's configuration dynamically to reduce the efficacy of reconnaissance and increase uncertainty and complexity for attackers. To this extent, a variety of MTDs have been proposed for specific aspects of a system. However, deploying MTDs at different layers/components of the Cloud and assessing their effects on the overall security gains for the entire system is still challenging since the Cloud is a complex system entailing physical and virtual resources, and there exists a multitude of attack surfaces that an attacker can target. Thus, we explore the combination of MTDs, and their deployment at different components (belonging to various operational layers) to maximize the security gains offered by the MTDs.We also propose a quantification mechanism to evaluate the effectiveness of the MTDs against the attacks in the Cloud.
AB - Moving Target Defense (MTD) can eliminate the asymmetric advantage that attackers have in terms of time to explore a static system by changing a system's configuration dynamically to reduce the efficacy of reconnaissance and increase uncertainty and complexity for attackers. To this extent, a variety of MTDs have been proposed for specific aspects of a system. However, deploying MTDs at different layers/components of the Cloud and assessing their effects on the overall security gains for the entire system is still challenging since the Cloud is a complex system entailing physical and virtual resources, and there exists a multitude of attack surfaces that an attacker can target. Thus, we explore the combination of MTDs, and their deployment at different components (belonging to various operational layers) to maximize the security gains offered by the MTDs.We also propose a quantification mechanism to evaluate the effectiveness of the MTDs against the attacks in the Cloud.
U2 - 10.1145/3548606.3563514
DO - 10.1145/3548606.3563514
M3 - Conference contribution/Paper
T3 - Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security
SP - 3415
EP - 3417
BT - CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security
A2 - Yin, Heng
A2 - Stavrou, Angelos
PB - ACM
CY - New York
T2 - ACM Conference on Computer and Communications Security
Y2 - 7 November 2022 through 11 November 2022
ER -