@inproceedings{dca5d2687cf84e73bd2ab52dab53ddcd,
title = "X-EDF: An Efficient Defensive Deception Framework against Reconnaissance Attacks",
abstract = "Deception techniques are increasingly recognized as trans-formative in the realm of cyber defense. With the advent of sophisticated, large-scale scanning technologies such as ZMap, attackers can swiftly pinpoint active and vulnerable ports on edge nodes. Given the diversity of these nodes, a versatile security tool adaptable to various deployment environments is essential. Moreover, edge nodes often encounter performance constraints, necessitating a defense strategy that balances cost-effectiveness for defenders. In response to these challenges, we introduce the X-EDF: an eXpress Data Path (XDP)-based Efficient Defensive De-ception Framework. This framework facilitates an efficient and lightweight deceptive defense leveraging XDP technology. The X-EDF can efficiently respond to attackers' scanning requests with deceptive messages before these requests enter the protocol stack, thus achieving deception defense at a minimal cost. We have validated the effectiveness of our defense strategy through game-theoretic proofs and real-world network deployments.",
keywords = "cyber defense, deception techniques, edge computing, express data path (XDP), game theory",
author = "Zhihang Zhang and Chenlin Huang and Yan Ding and Jinzhu Kong and Qing Liao and Pan Dong and Haifang Zhou",
note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 20th International Conference on Mobility, Sensing and Networking, MSN 2024 ; Conference date: 20-12-2024 Through 22-12-2024",
year = "2024",
doi = "10.1109/MSN63567.2024.00068",
language = "英语",
series = "Proceedings - 2024 20th International Conference on Mobility, Sensing and Networking, MSN 2024",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "445--452",
booktitle = "Proceedings - 2024 20th International Conference on Mobility, Sensing and Networking, MSN 2024",
address = "美国",
}