Visible to the public Design and Implementation of A Vulnerability-Tolerant Reverse Proxy Based on Moving Target Defense for E-Government Application

TitleDesign and Implementation of A Vulnerability-Tolerant Reverse Proxy Based on Moving Target Defense for E-Government Application
Publication TypeConference Paper
Year of Publication2021
AuthorsChen, Zhongyong, Han, Liegang, Xu, Yongshun, Yu, Zuwei
Conference Name2021 2nd Information Communication Technologies Conference (ICTC)
Date Publishedmay
KeywordsCommunications technology, cyber security, digital transformation, Dynamic scheduling, E-Government, Economics, Information security, Metrics, moving target defense, Network security, Prototypes, pubcrawl, resilience, Resiliency, Scalability, Uniform resource locators, Web application
AbstractThe digital transformation is injecting energy into economic growth and governance improvement for the China government. Digital governance and e-government services are playing a more and more important role in public management and social governance. Meanwhile, cyber-attacks and threats become the major challenges for e-government application systems. In this paper, we proposed a novel dynamic access entry scheme for web application, which provide a rapidly-changing defender-controlled attack surface based on Moving Target Defense (MTD) technology. The scheme can turn the static keywords of Uniform Resource Locator (URL) into the dynamic and random ones, which significantly increase the cost to adversaries attack. We present the prototype of the proposed scheme and evaluate the feasibility and effectiveness. The experimental results demonstrated the scheme is practical and effective.
DOI10.1109/ICTC51749.2021.9441622
Citation Keychen_design_2021