Automated Effectiveness Evaluation of Moving Target Defenses: Metrics for Missions and Attacks
Title | Automated Effectiveness Evaluation of Moving Target Defenses: Metrics for Missions and Attacks |
Publication Type | Conference Paper |
Year of Publication | 2016 |
Authors | Taylor, Joshua, Zaffarano, Kara, Koller, Ben, Bancroft, Charlie, Syversen, Jason |
Conference Name | Proceedings of the 2016 ACM Workshop on Moving Target Defense |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-4570-5 |
Keywords | Big Data, big data security, big data security metrics, cyber-security, experimentation, Metrics, Modeling, moving target defenses, pubcrawl, quantification, security metrics, virtualization |
Abstract | In this paper, we describe the results of several experiments designed to test two dynamic network moving target defenses against a propagating data exfiltration attack. We designed a collection of metrics to assess the costs to mission activities and the benefits in the face of attacks and evaluated the impacts of the moving target defenses in both areas. Experiments leveraged Siege's Cyber-Quantification Framework to automatically provision the networks used in the experiment, install the two moving target defenses, collect data, and analyze the results. We identify areas in which the costs and benefits of the two moving target defenses differ, and note some of their unique performance characteristics. |
URL | http://doi.acm.org/10.1145/2995272.2995282 |
DOI | 10.1145/2995272.2995282 |
Citation Key | taylor_automated_2016 |