Detection and Isolation Malware by Dynamic Routing Moving Target Defense with Proxies
Author
Abstract

Moving Target Defense - In recent years, many companies and organizations have introduced internal networks. While such internal networks propose availability and convenience, there have been many cases in which malicious outsiders have intruded on these local networks, and leaked customer information through cyber attacks. In addition, there have recently been reports of a type of attack called ”Advanced Persistent Threats (APT)”. Unlike conventional cyber attacks, these attacks target specific objectives. And they use sophisticated techniques to penetrate the target’s system. Once malware successes to intrude into the system, malware does not immediately attack the target but hides for a long time to investigate the system and gather information. Moving Target Defense, MTD is a technology that dynamically changes the configurations of systems targeted by cyber attacks. In this study, we implemented a model using a proxy-based network-level MTD to detect and quarantine malware in internal networks. And we can confirm that the proposed method is effective in the detection and quarantine of malware.

Year of Publication
2022
Date Published
dec
Publisher
IEEE
Conference Location
Las Vegas, NV, USA
ISBN Number
9798350320282
URL
https://ieeexplore.ieee.org/document/10216617/
DOI
10.1109/CSCI58124.2022.00189
Google Scholar | BibTeX | DOI