A Laboratory for Characterizing the Efficacy of Moving Target Defense

Abstract

Under ARO funded BAA project entitled ÒModeling and Analysis of Moving Target Defense Mechanisms in MANETÓ, we at College of William and Mary are developing a scalable, dynamic, adaptive security system that combines virtualization, emulation, and mutable network configurations to thwart the malicious scanning procedure from obtaining the real system infrastructure. One major challenge is to meet our scalability goal with the resource constraints of a small number of servers, and making virtual nodes Òreal enoughÓ from the view of attackers. Unfortunately, with our existing resources, we are only able to implement small-scale prototypes of the proposed capabilities, mostly consisting of a single server running the software we developed, and multiple client machines interacting with it. Such prototypes have been fundamental to demonstrate the feasibility of our approach, but a larger scale and more realistic implementation is needed to thoroughly vet the proposed framework and direct future research and development towards demonstrating cloud-wide scalability of our solution. This ARO DURIP addresses the equipment costs of servers, storage, network switches, and workstations, and it enables us to fully integrate all the proposed capabilities, realistically assess the efficacy of our research, and get valuable feedback from the analysts. Additionally, it offers our students the opportunity to gain precious hands-on experience from low-level system development to high-level cloud configuration that is extremely important to DOD missions.

Document Details

Document Type

DoD Grant Award

Publication Date

Jan 30, 2017

Source ID

W911NF1510512

Entities

Tags