Security and Performance Assessment of IP Multiplexing Moving Target Defence in Software Defined Networks
| Title | Security and Performance Assessment of IP Multiplexing Moving Target Defence in Software Defined Networks |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Dishington, Cole, Sharma, Dilli P., Kim, Dong Seong, Cho, Jin-Hee, Moore, Terrence J., Nelson, Frederica F. |
| Conference Name | 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) |
| Publisher | IEEE |
| ISBN Number | 978-1-7281-2777-4 |
| Keywords | Analytical models, comparison techniques, computer network security, Damage Assessment, flexible random virtual IP multiplexing, frequent address mutation, FRVM, IP multiplexing moving target defence, IP networks, Metrics, Moving Target Defence, moving target defence technique, moving target defense, MTD techniques, Multiplexing, network attacks, network configurations, Network reconnaissance, Performance, performance overhead, performance trade-offs, Probes, Protocols, pubcrawl, realistic evaluation, Reconnaissance, resilience, Resiliency, Scalability, security, security benefit, security techniques, Servers, Software Defined Network, software defined networking, Software Defined Networks, virtualisation, virtualised network |
| Abstract | With the interconnection of services and customers, network attacks are capable of large amounts of damage. Flexible Random Virtual IP Multiplexing (FRVM) is a Moving Target Defence (MTD) technique that protects against reconnaissance and access with address mutation and multiplexing. Security techniques must be trusted, however, FRVM, along with past MTD techniques, have gaps in realistic evaluation and thorough analysis of security and performance. FRVM, and two comparison techniques, were deployed on a virtualised network to demonstrate FRVM's security and performance trade-offs. The key results include the security and performance trade-offs of address multiplexing and address mutation. The security benefit of IP address multiplexing is much greater than its performance overhead, deployed on top of address mutation. Frequent address mutation significantly increases an attackers' network scan durations as well as effectively obfuscating and hiding network configurations. |
| URL | https://ieeexplore.ieee.org/document/8887301 |
| DOI | 10.1109/TrustCom/BigDataSE.2019.00046 |
| Citation Key | dishington_security_2019 |
- security
- performance trade-offs
- Probes
- Protocols
- pubcrawl
- realistic evaluation
- Reconnaissance
- resilience
- Resiliency
- Scalability
- performance overhead
- security benefit
- security techniques
- Servers
- Software Defined Network
- software defined networking
- Software Defined Networks
- virtualisation
- virtualised network
- Moving Target Defence
- comparison techniques
- computer network security
- Damage Assessment
- flexible random virtual IP multiplexing
- frequent address mutation
- FRVM
- IP multiplexing moving target defence
- IP networks
- Metrics
- Analytical models
- moving target defence technique
- moving target defense
- MTD techniques
- Multiplexing
- network attacks
- network configurations
- Network reconnaissance
- Performance