Visible to the public Evolution of Network Enumeration Strategies in Emulated Computer Networks

TitleEvolution of Network Enumeration Strategies in Emulated Computer Networks
Publication TypeConference Paper
Year of Publication2018
AuthorsHarris, Sean, Michalak, Eric, Schoonover, Kevin, Gausmann, Adam, Reinbolt, Hannah, Herman, Joshua, Tauritz, Daniel, Rawlings, Chris, Pope, Aaron Scott
Conference NameProceedings of the Genetic and Evolutionary Computation Conference Companion
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-5764-7
KeywordsBIOS Security, genetic programming, Human Behavior, Metrics, Network Emulation, Network security, pubcrawl, Resiliency, Scalability
AbstractSuccessful attacks on computer networks today do not often owe their victory to directly overcoming strong security measures set up by the defender. Rather, most attacks succeed because the number of possible vulnerabilities are too large for humans to fully protect without making a mistake. Regardless of the security elsewhere, a skilled attacker can exploit a single vulnerability in a defensive system and negate the benefits of those security measures. This paper presents an evolutionary framework for evolving attacker agents in a real, emulated network environment using genetic programming, as a foundation for coevolutionary systems which can automatically discover and mitigate network security flaws. We examine network enumeration, an initial network reconnaissance step, through our framework and present results demonstrating its success, indicating a broader applicability to further cyber-security tasks.
URLhttp://doi.acm.org/10.1145/3205651.3208270
DOI10.1145/3205651.3208270
Citation Keyharris_evolution_2018