| Title | Design of APT Attack Defense System Based on Dynamic Deception |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Liu, Xiaohu, Li, Laiqiang, Ma, Zhuang, Lin, Xin, Cao, Junyang |
| Conference Name | 2019 IEEE 5th International Conference on Computer and Communications (ICCC) |
| Date Published | dec |
| Keywords | advanced persistent threat, advanced persistent threat attack, APT, APT attack, APT attack defense system, APT defense system framework, computer network security, cryptography, deception defense process, defense APT attacks, defense system, DHCPv6, dynamic deception, dynamic IP address generation method, dynamic policy allocation mechanism, Dynamic scheduling, dynamic timing selection method, Encryption, Firewalls (computing), Heuristic algorithms, Human Behavior, hybrid encryption communication mechanism, IP networks, Metrics, pubcrawl, resilience, Resiliency, Scalability, Servers, SM4, Socket, sockets, Viterbi algorithm |
| Abstract | Advanced Persistent Threat (APT) attack has the characteristics of complex attack means, long duration and great harmfulness. Based on the idea of dynamic deception, the paper proposed an APT defense system framework, and analyzed the deception defense process. The paper proposed a hybrid encryption communication mechanism based on socket, a dynamic IP address generation method based on SM4, a dynamic timing selection method based on Viterbi algorithm and a dynamic policy allocation mechanism based on DHCPv6. Tests show that the defense system can dynamically change and effectively defense APT attacks. |
| DOI | 10.1109/ICCC47050.2019.9064206 |
| Citation Key | liu_design_2019 |
Design of APT Attack Defense System Based on Dynamic Deception