Moving Target Defense: A Journey from Idea to Product
Title | Moving Target Defense: A Journey from Idea to Product |
Publication Type | Conference Paper |
Year of Publication | 2016 |
Authors | Li, Jason, Yackoski, Justin, Evancich, Nicholas |
Conference Name | Proceedings of the 2016 ACM Workshop on Moving Target Defense |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-4570-5 |
Keywords | Collaboration, composability, enterprise network security, IPv6, ipv6 security, Metrics, moving target defense, pubcrawl, Resiliency |
Abstract | In today's enterprise networks, there are many ways for a determined attacker to obtain a foothold, bypass current protection technologies, and attack the intended target. Over several years we have developed the Self-shielding Dynamic Network Architecture (SDNA) technology, which prevents an attacker from targeting, entering, or spreading through an enterprise network by adding dynamics that present a changing view of the network over space and time. SDNA was developed with the support of government sponsored research and development and corporate internal resources. The SDNA technology was purchased by Cryptonite, LLC in 2015 and has been developed into a robust product offering called Cryptonite NXT. In this paper, we describe the journey and lessons learned along the course of feasibility demonstration, technology development, security testing, productization, and deployment in a production network. |
URL | http://doi.acm.org/10.1145/2995272.2995286 |
DOI | 10.1145/2995272.2995286 |
Citation Key | li_moving_2016 |