| 摘要: |
| 移动目标防御(Moving Target Defense,MTD)是改变当前网络空间“易攻难守”的攻防不对称局面的革命性技术之一。MTD的基本思想是通过持续不断地转换攻击面,增加攻击者攻击的困难度和复杂度。如何选取转换属性,提高属性攻击面转换空间是MTD领域研究的重点问题。多样化、冗余和欺骗是当前属性攻击面转换空间构造的主要方法。其中,多样化和冗余策略在构建攻击面转换空间时,存在构建成本高以及系统兼容性等问题,使得传统的移动目标防御无论在理论研究,还是在实际应用中都遇到了很大瓶颈。而欺骗策略则为解决这一困难问题提供了契机。欺骗策略由于其虚虚实实的变化,蜜罐、蜜饵、面包屑等多样化的欺骗方式,以及构建成本低、构造欺骗属性容易等特性,被提出用于扩大攻击面转换空间,成为MTD研究的重要技术手段和工具。首先,比较了基于网络空间欺骗的MTD与经典MTD (基于多样化和冗余的MTD)的差异,明确了网络空间欺骗在移动目标防御中发挥的重要价值;然后,基于MTD攻击面理论,提出了欺骗攻击面的概念,并基于此概念对欺骗移动目标防御进行了形式化定义;接着,根据网络空间欺骗机制的作用范围和需应对的攻击威胁,从网络层、系统层、应用层和数据层对基于欺骗的MTD技术及其应用进行了探索与分类,并从理论和实验两个维度总结基于欺骗的MTD有效性的评估方法;最后,归纳了研究面临的主要问题与挑战,并讨论了未来可能的研究方向。 |
| 关键词: 移动目标防御 网络空间欺骗 网络空间安全 评估方法 |
| DOI:10.19363/J.cnki.cn10-1380/tn.2023.06.04 |
| 投稿时间:2020-10-25修订日期:2021-04-08 |
| 基金项目:本课题得到国家重点研发计划(No. 2018YFC0806900), 国家自然科学基金(No. 61671448、 No. 61902397)和中国科学院信息工程研究所“青年之星”项目(No. Y7Z0201105)的资助。 |
|
| A Study on Cyber Deception-Based Moving Target Defense |
| ZHANG Yaqin,MA Duohe,SUN Xiaoyan,ZHOU Chuan,LIU Feng |
| State Key Laboratory Of Information Security, Institute of Information Engineering, CAS, Beijing 100093, China;School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100093, China;Department of Computer Science, California State University, Sacramento 95819, USA |
| Abstract: |
| Moving Target Defense(MTD) is one of the game-changing revolutionary concepts that surpasses traditional approaches by wresting the asymmetric advantages of the attackers over defenders. The basic idea of MTD is to continuously change the attack surface, thereby increasing the difficulty and complexity of attackers. Choosing the attributes to switch and expanding the switching space of attribute attack surface are critical problems in MTD research. Currently, diversification, redundancy and deception are three main strategies for constructing the switching space. However, the high cost and system incompatibility issues of the first two strategies, together with the limited attack surface switching space, make the theoretical research and practical application of traditional MTD remain stagnant. Cyber deception strategy provides an opportunity for this challenging problem. It offers diversified deceptive methods, such as honeypots, honey baits, and breadcrumbs, and has the characters of low cost and easy construction of deceptive properties. Therefore, cyber deception strategy now is used to expand the attack surface switching space, and becomes one of the most important approaches and tools for MTD study. In this paper, we first compare the differences between traditional MTD and cyber deception-based MTD, and identify the important value of cyber deception in MTD. Then based on attack surface theory given in MTD, we propose the concept of deception attack surface, and present the formalized definition of cyber deception based moving target defense based on this concept. Furthermore, according to the scope of the deception mechanism and the cyber threats to be dealt with, we perform a multi-dimension classification towards existing works in cyber deception-based MTD from four perspectives: network, system, application and data. Beyond that we present the evaluation methods for deception-based MTD validity from the theoretical and experimental dimensions. Finally, we summarize the limitations and challenges of existing solutions, and discuss potential future research directions. |
| Key words: moving target defense cyber deception cybersecurity evaluation |
