Effectiveness of proactive reset for mitigating impact of stealthy attacks on networks of autonomous systems

机译：主动重置的有效性，以减轻对自动系统网络的隐式攻击的影响

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Recent examples have shown that sophisticated cyber attackers are capable of infiltrating the cyber defenses of major organizations and spreading stealthily through a network, potentially doing significant damage before exploited vulnerabilities can be identified or patches developed. Autonomous systems are particularly vulnerable because they are further removed from human intervention. One emerging technology designed to address this problem is proactive reset, where systems automatically undergo a reset operation that restores them to a known malware-free state, regardless of whether or not they were already infected. More frequent resets result in higher security, but may also reduce functionality of the network. In this work, we consider the effectiveness of three proactive reset policies for mitigating the spread of stealthy malware through a network of autonomous systems. We perform experiments using agent-based simulation and find that a proactive policy that uses risk-flow analysis to determine when systems should be reset achieves performance comparable to that of a perfect detector.

机译：最近的例子表明，复杂的网络攻击者能够渗透主要组织的网络防御，并通过网络秘密传播，从而可能在识别出被利用的漏洞或开发补丁之前造成重大破坏。自治系统特别容易受到攻击，因为它们已被进一步从人工干预中移除。一种旨在解决此问题的新兴技术是主动重置，其中系统自动进行重置操作，无论它们是否已被感染，都将其还原到已知的无恶意软件状态。更频繁的重置会导致更高的安全性，但也会降低网络的功能。在这项工作中，我们考虑了三种主动重置策略在缓解通过自治系统网络进行的隐式恶意软件传播方面的有效性。我们使用基于代理的模拟进行实验，发现使用风险流分析来确定何时应重置系统的主动策略所获得的性能可与完美检测器相媲美。

著录项

来源
《IEEE Conference on Communications and Network Security》|2016年|437-441|共5页
会议地点
作者
Brian Thompson; James Morris-King; Hasan Cam;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Malware; Security; Autonomous systems; Detectors; Drones; Conferences; Analytical models;

机译：恶意软件;安全性;自治系统;检测器;无人机;会议;分析模型;

相似文献

外文文献
中文文献
专利

1. Denial of service attacks on network-based control systems: impact and mitigation [J] . Long M., Chwan-Hwa Wu, Hung J.Y. IEEE transactions on industrial informatics . 2005,第2期

机译：基于网络的控制系统上的拒绝服务攻击：影响和缓解
2. Impact of Network Infrastructure Parameters to the Effectiveness of Cyber Attacks Against Industrial Control Systems [J] . Béla Genge, Christos Siaterlis, Marc Hohenadel International journal of computers, communications and control . 2014,第4期

机译：网络基础结构参数对针对工业控制系统的网络攻击的有效性的影响
3. Impact of Network Infrastructure Parameters to the Effectiveness of Cyber Attacks Against Industrial Control Systems [J] . Béla Genge, Christos Siaterlis, Marc Hohenadel IAENG Internaitonal journal of computer science . 2014,第4期

机译：网络基础结构参数对针对工业控制系统的网络攻击的有效性的影响
4. Effectiveness of proactive reset for mitigating impact of stealthy attacks on networks of autonomous systems [C] . Brian Thompson, James Morris-King, Hasan Cam IEEE Conference on Communications and Network Security . 2016

机译：积极重置的有效性，以减轻隐身攻击对自治系统网络的影响
5. Mitigation of Denial of Service Attacks in Software Defined Network =MITIGATION OF DENIAL OF SERVICE ATTACKS IN SOFTWARE DEFINED NETWORK [D] . Dridi, Lobna. 2017

机译：软件定义网络中的拒绝服务攻击的缓解=软件定义网络中的拒绝服务攻击的缓解
6. Mitigation of malicious attacks on networks [O] . Christian M. Schneider, André A. Moreira, José S. Andrade Jr., 2011

机译：减轻对网络的恶意攻击
7. Impact of network infrastructure parameters to the effectiveness of cyber attacks against industrial control systems [O] . B. Genge, C. Siaterlis, M. Hohenadel, 2012

机译：网络基础设施参数对工业控制系统网络攻击有效性的影响

Effectiveness of proactive reset for mitigating impact of stealthy attacks on networks of autonomous systems

摘要

著录项

相似文献

相关主题

期刊订阅