A Laboratory for Characterizing the Efficacy of Moving Target Defense

Abstract

Under ARO funded BAA project entitled Modeling and Analysis of Moving Target Defense Mechanisms in MANET, we at College of William and Mary are developing a scalable, dynamic, adaptive security system that combines virtualization, emulation, and mutable network configurations to thwart the malicious scanning procedure from obtaining the real system infrastructure. One major challenge is to meet our scalability goal with the resource constraints of a small number of servers, and making virtual nodes real enough from the view of attackers. Unfortunately, with our existing resources, we are only able to implement small-scale prototypes of the proposed capabilities, mostly consisting of a single server running the software we developed, and multiple client machines interacting with it. Such prototypes have been fundamental to demonstrate the feasibility of our approach, but a larger scale and more realistic implementation is needed to thoroughly vet the proposed framework and direct future research and development towards demonstrating cloud-wide scalability of our solution. This ARO DURIP addresses the equipment costs of servers, storage, network switches, and workstations, and it enables us to fully integrate all the proposed capabilities, realistically assess the efficacy of our research, and get valuable feedback from the analysts. Additionally, it offers our students the opportunity to gain precious hands-on experience from low-level system development to high-level cloud configuration that is extremely important to DOD missions.

Document Details

Document Type

Technical Report

Publication Date

Oct 25, 2016

Accession Number

AD1038659

Entities

Tags