The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. ex. Some numerals are expressed as "XNUMX".
Copyrights notice
The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. Copyrights notice
pandangan teks lengkap
94
Kertas kerja ini mencadangkan Pertahanan Sasaran Bergerak (MTD) berasaskan Rangkaian Ditakrifkan Perisian (SDN) untuk melindungi rangkaian daripada kemungkinan imbasan dalam rangkaian yang terjejas. Sebagai ciri unik, bertentangan dengan MTD tradisional, MTD yang dicadangkan boleh berfungsi bersama alatan dan langkah balas lain yang telah digunakan dalam rangkaian (cth, Sistem Perlindungan Pencerobohan dan Pengesanan) tanpa menjejaskan kelakuannya. Melalui penilaian yang meluas, kami menunjukkan keberkesanan mekanisme yang dicadangkan berbanding penyelesaian sedia ada dalam menghalang imbasan kadar yang berbeza tanpa menjejaskan prestasi rangkaian dan pengawal.
Shoya CHIBA
Tohoku University
Luis GUILLEN
Tohoku University
Satoru IZUMI
National Institute of Technology, Sendai College
Toru ABE
Tohoku University
Takuo SUGANUMA
Tohoku University
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Salinan
Shoya CHIBA, Luis GUILLEN, Satoru IZUMI, Toru ABE, Takuo SUGANUMA, "An SDN-Based Moving Target Defense as a Countermeasure to Prevent Network Scans" in IEICE TRANSACTIONS on Communications,
vol. E105-B, no. 11, pp. 1400-1407, November 2022, doi: 10.1587/transcom.2021TMP0020.
Abstract: This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) to protect the network from potential scans in a compromised network. As a unique feature, contrary to traditional MTDs, the proposed MTD can work alongside other tools and countermeasures already deployed in the network (e.g., Intrusion Protection and Detection Systems) without affecting its behavior. Through extensive evaluation, we showed the effectiveness of the proposed mechanism compared to existing solutions in preventing scans of different rates without affecting the network and controller performance.
URL: https://global.ieice.org/en_transactions/communications/10.1587/transcom.2021TMP0020/_p
Salinan
@ARTICLE{e105-b_11_1400,
author={Shoya CHIBA, Luis GUILLEN, Satoru IZUMI, Toru ABE, Takuo SUGANUMA, },
journal={IEICE TRANSACTIONS on Communications},
title={An SDN-Based Moving Target Defense as a Countermeasure to Prevent Network Scans},
year={2022},
volume={E105-B},
number={11},
pages={1400-1407},
abstract={This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) to protect the network from potential scans in a compromised network. As a unique feature, contrary to traditional MTDs, the proposed MTD can work alongside other tools and countermeasures already deployed in the network (e.g., Intrusion Protection and Detection Systems) without affecting its behavior. Through extensive evaluation, we showed the effectiveness of the proposed mechanism compared to existing solutions in preventing scans of different rates without affecting the network and controller performance.},
keywords={},
doi={10.1587/transcom.2021TMP0020},
ISSN={1745-1345},
month={November},}
Salinan
TY - JOUR
TI - An SDN-Based Moving Target Defense as a Countermeasure to Prevent Network Scans
T2 - IEICE TRANSACTIONS on Communications
SP - 1400
EP - 1407
AU - Shoya CHIBA
AU - Luis GUILLEN
AU - Satoru IZUMI
AU - Toru ABE
AU - Takuo SUGANUMA
PY - 2022
DO - 10.1587/transcom.2021TMP0020
JO - IEICE TRANSACTIONS on Communications
SN - 1745-1345
VL - E105-B
IS - 11
JA - IEICE TRANSACTIONS on Communications
Y1 - November 2022
AB - This paper proposes a Software-Defined Network (SDN)-based Moving Target Defense (MTD) to protect the network from potential scans in a compromised network. As a unique feature, contrary to traditional MTDs, the proposed MTD can work alongside other tools and countermeasures already deployed in the network (e.g., Intrusion Protection and Detection Systems) without affecting its behavior. Through extensive evaluation, we showed the effectiveness of the proposed mechanism compared to existing solutions in preventing scans of different rates without affecting the network and controller performance.
ER -