基于POF的网络窃听攻击移动目标防御方法

Duohe Ma; Qiong Li; Dongdai Lin

doi:10.11959/j.issn.1000-436x.2018025

基于POF的网络窃听攻击移动目标防御方法

Translated title of the contribution: Moving target defense against network eavesdropping attack using POF

Duohe Ma
, Qiong Li^*
, Dongdai Lin

^*Corresponding author for this work

CAS - Institute of Information Engineering
School of Computer Science and Technology, Harbin Institute of Technology

Research output: Contribution to journal › Article › peer-review

3 Scopus citations

Abstract

Eavesdropping attack hereby was the major attack for traditional network communication. As this kind of attacks was stealthy and untraceable, it was barely detectable for those feature detection or static configuration based passive defense approaches. Since existing encryption or dynamic address methods could only confuse part of fields of network protocols, they couldn’t form a comprehensive protection. Therefore a moving target defense method by utilizing the protocol customization ability of protocol-oblivious forwarding (POF) was proposed, through private protocol packet randomization strategy and randomly drop deception-packets on dynamic paths strategy. It could greatly increase the difficulty of implementing network eavesdropping attack and protect the privacy of the network communication process. Experiments and compare studies show its efficiency.

Translated title of the contribution	Moving target defense against network eavesdropping attack using POF
Original language	Chinese (Traditional)
Pages (from-to)	69-83
Number of pages	15
Journal	Tongxin Xuebao/Journal on Communications
Volume	39
Issue number	2
DOIs	https://doi.org/10.11959/j.issn.1000-436x.2018025
State	Published - 25 Feb 2018
Externally published	Yes

Access to Document

10.11959/j.issn.1000-436x.2018025

Cite this

@article{78443ab8842a40e08ad94b7cdb931b1c,

title = "基于POF的网络窃听攻击移动目标防御方法",

abstract = "Eavesdropping attack hereby was the major attack for traditional network communication. As this kind of attacks was stealthy and untraceable, it was barely detectable for those feature detection or static configuration based passive defense approaches. Since existing encryption or dynamic address methods could only confuse part of fields of network protocols, they couldn{\textquoteright}t form a comprehensive protection. Therefore a moving target defense method by utilizing the protocol customization ability of protocol-oblivious forwarding (POF) was proposed, through private protocol packet randomization strategy and randomly drop deception-packets on dynamic paths strategy. It could greatly increase the difficulty of implementing network eavesdropping attack and protect the privacy of the network communication process. Experiments and compare studies show its efficiency.",

keywords = "Cyber space deception, Eavesdropping attack, Moving target defense, Protocol randomization, Protocol-oblivious forwarding",

author = "Duohe Ma and Qiong Li and Dongdai Lin",

year = "2018",

month = feb,

day = "25",

doi = "10.11959/j.issn.1000-436x.2018025",

language = "繁体中文",

volume = "39",

pages = "69--83",

journal = "Tongxin Xuebao/Journal on Communications",

issn = "1000-436X",

publisher = "Editorial Board of Journal on Communications",

number = "2",

}

TY - JOUR

T1 - 基于POF的网络窃听攻击移动目标防御方法

AU - Ma, Duohe

AU - Li, Qiong

AU - Lin, Dongdai

PY - 2018/2/25

Y1 - 2018/2/25

N2 - Eavesdropping attack hereby was the major attack for traditional network communication. As this kind of attacks was stealthy and untraceable, it was barely detectable for those feature detection or static configuration based passive defense approaches. Since existing encryption or dynamic address methods could only confuse part of fields of network protocols, they couldn’t form a comprehensive protection. Therefore a moving target defense method by utilizing the protocol customization ability of protocol-oblivious forwarding (POF) was proposed, through private protocol packet randomization strategy and randomly drop deception-packets on dynamic paths strategy. It could greatly increase the difficulty of implementing network eavesdropping attack and protect the privacy of the network communication process. Experiments and compare studies show its efficiency.

AB - Eavesdropping attack hereby was the major attack for traditional network communication. As this kind of attacks was stealthy and untraceable, it was barely detectable for those feature detection or static configuration based passive defense approaches. Since existing encryption or dynamic address methods could only confuse part of fields of network protocols, they couldn’t form a comprehensive protection. Therefore a moving target defense method by utilizing the protocol customization ability of protocol-oblivious forwarding (POF) was proposed, through private protocol packet randomization strategy and randomly drop deception-packets on dynamic paths strategy. It could greatly increase the difficulty of implementing network eavesdropping attack and protect the privacy of the network communication process. Experiments and compare studies show its efficiency.

KW - Cyber space deception

KW - Eavesdropping attack

KW - Moving target defense

KW - Protocol randomization

KW - Protocol-oblivious forwarding

UR - https://www.scopus.com/pages/publications/85051713490

U2 - 10.11959/j.issn.1000-436x.2018025

DO - 10.11959/j.issn.1000-436x.2018025

M3 - 文章

AN - SCOPUS:85051713490

SN - 1000-436X

VL - 39

SP - 69

EP - 83

JO - Tongxin Xuebao/Journal on Communications

JF - Tongxin Xuebao/Journal on Communications

IS - 2

ER -

基于POF的网络窃听攻击移动目标防御方法

Abstract

Access to Document

Other files and links

Fingerprint

Cite this