Securing critical infrastructure by moving target defense

Vahid Heydari, Seong Moo Yoo

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Scopus citations

Abstract

One of the most important areas of information security is industrial system security. Cyber-attacks on critical infrastructure networks causing an outage quickly escalate into the worst case scenario. Remote attackers can start an attack from all around the world. During the reconnaissance step, attackers need to gather information about the victim. One of the most important information in this regard is the IP address of the victim. Static IP addresses can help attackers in two aspects. First, they are easily discoverable. Second, after accessing the victim, the attacker can maintain this access for a long time. So an effective defense is a mechanism to change the IP addresses randomly and dynamically. By using Mobile IPv6 we can have both a permanent IP address to avoid disrupting TCP sessions and a temporary IP address for connecting to other nodes. Therefore, we developed a Moving Target Mobile IPv6 Defense (MTM6D) to dynamically change the IP address of critical infrastructure servers. The main goals of our method are using a combination of available standards to defend targeted attacks and eliminating packet loss because of address collision during address rotations. The feasibility and performance evaluation of MTM6D are demonstrated by real network implementation.

Original languageEnglish (US)
Title of host publicationProceedings of the 11th International Conference on Cyber Warfare and Security, ICCWS 2016
EditorsTanya Zlateva, Virginia A. Greiman
PublisherAcademic Conferences Limited
Pages382-390
Number of pages9
ISBN (Electronic)9781910810828
StatePublished - 2016
Externally publishedYes
Event11th International Conference on Cyber Warfare and Security, ICCWS 2016 - Boston, United States
Duration: Mar 17 2016Mar 18 2016

Publication series

NameProceedings of the 11th International Conference on Cyber Warfare and Security, ICCWS 2016

Other

Other11th International Conference on Cyber Warfare and Security, ICCWS 2016
Country/TerritoryUnited States
CityBoston
Period3/17/163/18/16

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Computer Science Applications
  • Safety, Risk, Reliability and Quality

Fingerprint

Dive into the research topics of 'Securing critical infrastructure by moving target defense'. Together they form a unique fingerprint.

Cite this