This goal of this project is to investigate next-generation network attack reconnaissance techniques, and explore the limitation for existing defenses. The result of this investigation offers understanding of potential game-changing in network reconnaissance attacks and how they can evolve in order to enable discovering and navigating the network quickly and safely. The project particularly explores novel scanning techniques to discover firewall security polices remotely via intelligent active probing, and without probing the end-hosts. The outcome of this project, if successful, is expected to offer transformative views to network defense, particularly counter-scanning techniques, beyond traditional intrusion detection/prevention systems. As this far-forward looking EAGER proposal exhibits high-risk, it also entails high-value that is to be always many steps ahead of attackers. This research arises serious concerns about the privacy of security configuration and the effectiveness of existing counter-measures against future advanced attacks. The proposed research agenda may make researchers as well as vendors consider fundamentally new defense concepts beyond the current IDS and IPS. This project also stimulates theorizing and predicting next-generation network attacks.
TC: EAGER: Investigations of Next-generation Network Reconnaissance Attack Techniques and Limitations