An adversarial coupon-collector model of asynchronous moving-target defense against botnet reconnaissance^*

机译：僵尸网络侦察的异步移动目标防御的对抗性赠券-收集器模型^*

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

We consider a moving-target defense of a proxied multiserver tenant of the cloud where the proxies dynamically change to defeat reconnaissance activity by a botnet planning a DDoS attack targeting the tenant. Unlike the system of [4] where all proxies change simultaneously at a fixed rate, we consider a more “responsive” system where the proxies may change more rapidly and selectively based on the current session request intensity, which is expected to be abnormally large during active reconnaissance. In this paper, we study a tractable “adversarial” coupon-collector model wherein proxies change after a random period of time from the latest request, i.e., asynchronously. In addition to determining the stationary mean number of proxies discovered by the attacker, we study the age of a proxy (coupon type) when it has been identified (requested) by the botnet. This gives us the rate at which proxies change (cost to the defender) when the nominal client request load is relatively negligible.

机译：我们考虑了代理的云多服务器租户的移动目标防御，其中代理通过计划针对租户的DDoS攻击而动态更改以击败侦察活动。与[4]中所有代理以固定速率同时更改的系统不同，我们认为是一种更具“响应性”的系统，在该系统中，代理可以根据当前会话请求强度更快，更有选择地进行更改，预计在此期间强度会异常大主动侦察。在本文中，我们研究了一种易于处理的“对抗性”优惠券/收藏家模型，其中，代理从最近的请求开始经过一段随机的时间（即异步）后发生了变化。除了确定攻击者发现的代理的固定平均数量之外，我们还研究由僵尸网络识别（请求）的代理的年龄（优惠券类型）。当名义客户请求负载相对可忽略时，这为我们提供了代理更改的速率（防御者的成本）。

著录项

来源
《International Conference on Malicious and Unwanted Software》|2018年|61-67|共7页
会议地点
作者
George Kesidis; Yuquan Shan; Daniel Fleck; Angelos Stavrou; Takis Konstantopoulos;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Servers; Botnet; Reconnaissance; Computer crime; Cloud computing; Steady-state; Malware;

机译：服务器;僵尸网络;侦察;计算机犯罪;云计算;稳定状态;恶意软件;

相似文献

外文文献
中文文献
专利

1. DReLAB - Deep REinforcement Learning Adversarial Botnet: A benchmark dataset for adversarial attacks against botnet Intrusion Detection Systems [J] . Andrea Venturi, Giovanni Apruzzese, Mauro Andreolini, Data in Brief . 2021,第3期

机译：DRELAB - 深度加强学习对抗僵尸网络：用于对僵尸网络入侵检测系统进行对抗性攻击的基准数据集
2. Mean-Field-Game Model for Botnet Defense in Cyber-Security [J] . Kolokoltsov V. N., Bensoussan A. Applied mathematics and optimization . 2016,第3期

机译：网络安全中僵尸网络防御的均值博弈模型
3. Model Matching for Asynchronous Sequential Machines with Adversarial Inputs Using State Bursts [J] . Jung-Min Yang, Seong Woo Kwak International Journal of Control, Automation, and Systems . 2010,第5期

机译：具有状态突发的具有对抗性输入的异步顺序机的模型匹配
4. An adversarial coupon-collector model of asynchronous moving-target defense against botnet reconnaissance* [C] . George Kesidis, Yuquan Shan, Daniel Fleck, International Conference on Malicious and Unwanted Software . 2018

机译：对僵尸网络侦察的异步移动目标防御的对手优惠券 - 集电器模型 *
5. Reconnaissance des defauts de la machine asynchrone: Application des modeles d'intelligence artificielle =Recognition of Asynchronous Machine Defects: Application of Artificial Intelligence Models [D] . Maitre, Julien Angelo. 2017

机译：异步机器缺陷的识别：人工智能模型的应用=异步机器缺陷的识别：人工智能模型的应用
6. DReLAB - Deep REinforcement Learning Adversarial Botnet: A benchmark dataset for adversarial attacks against botnet Intrusion Detection Systems [O] . Andrea Venturi, Giovanni Apruzzese, Mauro Andreolini, 2021

机译：DRELAB - 深度加强学习对抗僵尸网络：用于对僵尸网络入侵检测系统进行对抗性攻击的基准数据集
7. Moving-Target Defense Against Botnet Reconnaissance and an Adversarial Coupon-Collection Model [O] . Daniel Fleck, Angelos Stavrou, George Kesidis, 2018

机译：对僵尸网络侦察的移动目标防御和对抗优惠券收集模型

An adversarial coupon-collector model of asynchronous moving-target defense against botnet reconnaissance*

摘要

著录项

相似文献

相关主题

期刊订阅

An adversarial coupon-collector model of asynchronous moving-target defense against botnet reconnaissance^*