ETRI-Knowledge Sharing Plaform

ENGLISH

성과물

논문 검색
구분 SCI
연도 ~ 키워드

상세정보

학술지 Secure Cyber Deception Architecture and Decoy Injection to Mitigate the Insider Threat
Cited 14 time in scopus Download 44 time Share share facebook twitter linkedin kakaostory
저자
박경민, 우사무엘, 문대성, 최훈
발행일
201801
출처
Symmetry, v.10 no.1, pp.1-16
ISSN
2073-8994
출판사
MDPI AG
DOI
https://dx.doi.org/10.3390/sym10010014
협약과제
17HH4100, 능동적 사전보안을 위한 사이버 자가변이 기술 개발, 문대성
초록
We propose a novel dynamic host mutation (DHM) architecture based on moving target defense (MTD) that can actively cope with cyberattacks. The goal of the DHM is to break the cyber kill chain, expand the attack surface to increase the attacker's target analysis cost, and disrupt the attacker's fingerprinting to disable the server trace. We define the participating entities that share the MTD policy within the enterprise network or the critical infrastructure, and define functional modules of each entity for DHM enforcement. The threat model of this study is an insider threat of a type not considered in previous studies. We define an attack model considering an insider threat and propose a decoy injection mechanism to confuse the attacker. In addition, we analyze the security of the proposed structure and mechanism based on the security requirements and propose a trade-off considering security and availability.
키워드
Decoy injection, Moving target defense, Network security, Proactive security
KSP 제안 키워드
Attack Surface, Critical Infrastructure, Cyber deception, Functional Modules, Injection mechanism, Insider Threat, Kill chain, Moving Target Defense, Proactive security, Security requirements, Target analysis
본 저작물은 크리에이티브 커먼즈 저작자 표시 (CC BY) 조건에 따라 이용할 수 있습니다.
저작자 표시 (CC BY)