Visible to the public Moving Target Defense: A Journey from Idea to Product

TitleMoving Target Defense: A Journey from Idea to Product
Publication TypeConference Paper
Year of Publication2016
AuthorsLi, Jason, Yackoski, Justin, Evancich, Nicholas
Conference NameProceedings of the 2016 ACM Workshop on Moving Target Defense
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4570-5
KeywordsCollaboration, composability, enterprise network security, IPv6, ipv6 security, Metrics, moving target defense, pubcrawl, Resiliency
Abstract

In today's enterprise networks, there are many ways for a determined attacker to obtain a foothold, bypass current protection technologies, and attack the intended target. Over several years we have developed the Self-shielding Dynamic Network Architecture (SDNA) technology, which prevents an attacker from targeting, entering, or spreading through an enterprise network by adding dynamics that present a changing view of the network over space and time. SDNA was developed with the support of government sponsored research and development and corporate internal resources. The SDNA technology was purchased by Cryptonite, LLC in 2015 and has been developed into a robust product offering called Cryptonite NXT. In this paper, we describe the journey and lessons learned along the course of feasibility demonstration, technology development, security testing, productization, and deployment in a production network.

URLhttp://doi.acm.org/10.1145/2995272.2995286
DOI10.1145/2995272.2995286
Citation Keyli_moving_2016