摘要
论述了通信网络动目标防御(MTD)概念,从攻击面特征及动目标防御功能性内涵的角度,对现有动目标防御技术进行了归类和分析。在现有研究的基础上设计了基于端信息跳变的动目标防御系统,并对其抗攻击性能进行了分析。该系统能通过通信过程中持续变化攻击面增大攻击成本、复杂度和降低攻击成功率,从根本上提高防御攻击的性能。该研究可为多机制结合的动目标防御系统的设计与实现提供理论基础。
The concept of moving target defense (MTD) of communication networks is interpreted, and the existing moving target defense techniques are classified and analyzed from the angles of attack surface feature and functional connotation of moving target defense. A moving target defense system based on end hopping is designed on the basis of the study of present techniques of moving target denfense, and its anti-attack performance is analyzed. The system increases the attack cost and complexity and decreases the attack sucess ratge by continually changing the attack surface, thus its attack defense performance can be radically improved. This study can provide the theoretical basis for design and implementation of multi-mechanism moving target defense systems.
作者
向征
谭田天
蔡桂林
王小峰
罗跃斌
Xiang Zheng;Tan Tiantian;Cai Guilin;Wang Xiaofeng;Luo Yuebin(Information Centre, Hunan Institute of Information Technology, Changsha 410073;Department of Computer, National University of Defense Technology, Changsha 410073;Crop 95942, Wuhan 430313)
出处
《高技术通讯》
北大核心
2017年第8期690-698,共9页
Chinese High Technology Letters
基金
863计划(2011AA01A103)
高等学校博士学科点专项科研基金(20114307110006)
长江学者和创新团队发展计划(IRT1012)
信息保障技术重点实验室开放基金(KJ-12-07)资助项目
关键词
通信网络安全
动目标防御(MTD)
综述
主动防御
变换机制
communication network security, moving target defense (MTD), survey, active defense, shiftingmechanism
