|国家科技期刊平台
| 注册
首页|期刊导航|通信学报|基于最优路径跳变的网络移动目标防御技术

基于最优路径跳变的网络移动目标防御技术

雷程 马多贺 张红旗 韩琦 杨英杰

通信学报2017,Vol.38Issue(3):133-143,11.
通信学报2017,Vol.38Issue(3):133-143,11.DOI:10.11959/j.issn.1000-436x.2017056

基于最优路径跳变的网络移动目标防御技术

Network moving target defense technique based on optimal forwarding path migration

雷程 1马多贺 2张红旗 3韩琦 2杨英杰1

作者信息

  • 1. 解放军信息工程大学密码工程学院,河南郑州450001
  • 2. 中国科学院信息工程研究所信息安全国家重点实验室,北京100093
  • 3. 河南省信息安全重点实验室,河南郑州450001
  • 折叠

摘要

Abstract

Moving target defense is a revolutionary technology which changes the situation of attack and defense.How to effectively achieve forwarding path mutation is one of the hotspot in this field.Since existing mechanisms are blindness and lack of constraints in the process of mutation,it is hard to maximize mutation defense benefit under the condition of good network quality of services.A novel of network moving target defense technique based on optimal forwarding path migration was proposed.Satisfiability modulo theory was adopted to formally describe the mutation constraints,so as to prevent transient problem.Optimization combination between routing path and mutation period was chosen by using optimal routing path generation method based on security capacity matrix so as to maximum defense benefit.Theoretical and experimental analysis show the defense cost and benefit in resisting passive sniffing attacks.The capability of achieving maximum defense benefit under the condition of ensuring network quality of service is proved.

关键词

移动目标防御/路径跳变/可满足性模理论/瞬态问题/安全容量矩阵/防御收益最大化

Key words

moving target defense/forwarding path migration/satisfiability modulo theory/transient problem/security capacity matrix/defense benefit maximization

分类

信息技术与安全科学

引用本文复制引用

雷程,马多贺,张红旗,韩琦,杨英杰..基于最优路径跳变的网络移动目标防御技术[J].通信学报,2017,38(3):133-143,11.

基金项目

国家重点基础研究发展计划(“973”计划)基金资助项目(No.2011CB311801) (“973”计划)

国家高技术研究发展计划(“863”计划)基金资助项目(No.2012AA012704,No.2015AA016106) (“863”计划)

郑州市科技领军人才基金资助项目(No.131PLKRC644) (No.131PLKRC644)

中国科学院先导专项基金资助项目(No.XDA06010701) (No.XDA06010701)

中国科学院信息工程研究所“青年之星”计划基金资助项目(No.118800808) (No.118800808)

中国科学院重点部署专项基金资助项目(No.Y6X0061105)The National Basic Research Program of China (973 Program) (No.2011CB311801),The National High Technology Research and Development Program of China (863 Program) (No.2012AA012704,No.2015AA016106),Zhengzhou Science and Technology Talents Program (No.131PLKRC644),Strategic Priority Research Program of the Chinese Academy of Sciences(No.XDA06010701),Young Scientist Program of Institute of Information Engineering CAS (No.118800808),CAS Key Deployment Project(No.Y6X0061105) (No.Y6X0061105)

通信学报

OA北大核心CSCDCSTPCD

1000-436X

访问量0
|
下载量0
段落导航相关论文