Moving-target Defense against Botnet Reconnaissance and an Adversarial Coupon-Collection Model



Fleck, Daniel, Stavrou, Angelos, Kesidis, George, Nasiriani, Neda, Shan, Yuquan, Konstantopoulos, Takis and IEEE
(2019) Moving-target Defense against Botnet Reconnaissance and an Adversarial Coupon-Collection Model. 2018 IEEE CONFERENCE ON DEPENDABLE AND SECURE COMPUTING (DSC), 00. pp. 196-203.

[thumbnail of 1712.01102v3.pdf] Text
1712.01102v3.pdf - Submitted version

Download (880kB)

Abstract

We consider a cloud based multiserver system consisting of a set of replica application servers behind a set of proxy (indirection) servers which interact directly with clients over the Internet. We study a proactive moving-target defense to thwart a DDoS attacker's reconnaissance phase and consequently reduce the attack's impact. The defense is effectively a moving-target (motag) technique in which the proxies dynamically change. The system is evaluated using an AWS prototype of HTTP redirection and by numerical evaluations of an adversarial coupon-collector mathematical model, the latter allowing larger-scale extrapolations.

Item Type: Article
Uncontrolled Keywords: DDoS attack, moving-target defense, adversarial coupon collection, cloud computing
Depositing User: Symplectic Admin
Date Deposited: 07 Mar 2019 10:06
Last Modified: 16 Mar 2024 22:15
DOI: 10.1109/desec.2018.8625162
Related URLs:
URI: https://livrepository.liverpool.ac.uk/id/eprint/3033884