Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques

Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques

Moving Target Defense (MTD) has recently emerged as a significant cybersecurity technique. Software-Defined Networking (SDN) has the capability to design efficient network architecture due to its programmability and centralized control management. In this paper, a mechanism for the protection agains...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Engineering, technology & applied science research technology & applied science research, 2021-12, Vol.11 (6), p.7745-7749
Hauptverfasser: Hyder, M. F., Waseemullah, ., Farooq, M. U.
Format: Artikel
Sprache:eng
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 7749
container_issue 6
container_start_page 7745
container_title Engineering, technology & applied science research
container_volume 11
creator Hyder, M. F.
Waseemullah, .
Farooq, M. U.
description Moving Target Defense (MTD) has recently emerged as a significant cybersecurity technique. Software-Defined Networking (SDN) has the capability to design efficient network architecture due to its programmability and centralized control management. In this paper, a mechanism for the protection against insider reconnaissance has been proposed using a combination of diversity and a shuffling-based approach of MTD. In order to implement the shuffling technique, IP shuffling is used in the insider network. The IP addresses of internal hosts are mapped via real to virtual IP mapping through random IP generation from a pseudo-random mechanism. For the diversity, a multiple servers’ platform is incorporated for different critical LAN services like Domain Name System (DNS), internal web services, etc. This combined diversity and shuffling approach significantly counters the insider reconnaissance targeting critical LAN services. The proposed scheme also exploited open-source IDS to block insider reconnaissance. The proposed solution was implemented using ONOS SDN controller, Mininet simulator, Snort IDS systems. The experimental results substantiate effective protection against insider network reconnaissance at a low computational cost.
doi_str_mv 10.48084/etasr.4417
format Article
fullrecord <record><control><sourceid>crossref</sourceid><recordid>TN_cdi_crossref_primary_10_48084_etasr_4417</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>10_48084_etasr_4417</sourcerecordid><originalsourceid>FETCH-LOGICAL-c228t-91a699058e8b0e87d224f5711ec67093e3a576838116b71ab590b85c9615c48f3</originalsourceid><addsrcrecordid>eNotkE1LAzEQhoMoWGpP_oHcZWuym83HUVq1hYqg2_OSzU7aSJtoklZ68L_bVt_LwDsPA_MgdEvJmEki2T1kneKYMSou0IAKVRaSVPwSDcqS0YIxKa7RKKUPcgyXnIlygH6a8K1jn_Ak7HyG6PwK5zXguU-uh4jfwATvtUtJewN4mU6APtLbznmdXfA4WPy-3lm7Oa98j6duDzG5fMAvYX8qGx1XkPEULPgEuAGz9u5rB-kGXVm9STD6n0O0fHpsJrNi8fo8nzwsClOWMheKaq4UqSXIjoAU_fEhWwtKwXBBVAWVrgWXlaSUd4Lqrlakk7VRnNaGSVsN0d3fXRNDShFs-xndVsdDS0l7ltee5bUnedUvZw9kRQ</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques</title><source>Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals</source><creator>Hyder, M. F. ; Waseemullah, . ; Farooq, M. U.</creator><creatorcontrib>Hyder, M. F. ; Waseemullah, . ; Farooq, M. U.</creatorcontrib><description>Moving Target Defense (MTD) has recently emerged as a significant cybersecurity technique. Software-Defined Networking (SDN) has the capability to design efficient network architecture due to its programmability and centralized control management. In this paper, a mechanism for the protection against insider reconnaissance has been proposed using a combination of diversity and a shuffling-based approach of MTD. In order to implement the shuffling technique, IP shuffling is used in the insider network. The IP addresses of internal hosts are mapped via real to virtual IP mapping through random IP generation from a pseudo-random mechanism. For the diversity, a multiple servers’ platform is incorporated for different critical LAN services like Domain Name System (DNS), internal web services, etc. This combined diversity and shuffling approach significantly counters the insider reconnaissance targeting critical LAN services. The proposed scheme also exploited open-source IDS to block insider reconnaissance. The proposed solution was implemented using ONOS SDN controller, Mininet simulator, Snort IDS systems. The experimental results substantiate effective protection against insider network reconnaissance at a low computational cost.</description><identifier>ISSN: 2241-4487</identifier><identifier>EISSN: 1792-8036</identifier><identifier>DOI: 10.48084/etasr.4417</identifier><language>eng</language><ispartof>Engineering, technology &amp; applied science research, 2021-12, Vol.11 (6), p.7745-7749</ispartof><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><cites>FETCH-LOGICAL-c228t-91a699058e8b0e87d224f5711ec67093e3a576838116b71ab590b85c9615c48f3</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,777,781,27905,27906</link.rule.ids></links><search><creatorcontrib>Hyder, M. F.</creatorcontrib><creatorcontrib>Waseemullah, .</creatorcontrib><creatorcontrib>Farooq, M. U.</creatorcontrib><title>Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques</title><title>Engineering, technology &amp; applied science research</title><description>Moving Target Defense (MTD) has recently emerged as a significant cybersecurity technique. Software-Defined Networking (SDN) has the capability to design efficient network architecture due to its programmability and centralized control management. In this paper, a mechanism for the protection against insider reconnaissance has been proposed using a combination of diversity and a shuffling-based approach of MTD. In order to implement the shuffling technique, IP shuffling is used in the insider network. The IP addresses of internal hosts are mapped via real to virtual IP mapping through random IP generation from a pseudo-random mechanism. For the diversity, a multiple servers’ platform is incorporated for different critical LAN services like Domain Name System (DNS), internal web services, etc. This combined diversity and shuffling approach significantly counters the insider reconnaissance targeting critical LAN services. The proposed scheme also exploited open-source IDS to block insider reconnaissance. The proposed solution was implemented using ONOS SDN controller, Mininet simulator, Snort IDS systems. The experimental results substantiate effective protection against insider network reconnaissance at a low computational cost.</description><issn>2241-4487</issn><issn>1792-8036</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2021</creationdate><recordtype>article</recordtype><recordid>eNotkE1LAzEQhoMoWGpP_oHcZWuym83HUVq1hYqg2_OSzU7aSJtoklZ68L_bVt_LwDsPA_MgdEvJmEki2T1kneKYMSou0IAKVRaSVPwSDcqS0YIxKa7RKKUPcgyXnIlygH6a8K1jn_Ak7HyG6PwK5zXguU-uh4jfwATvtUtJewN4mU6APtLbznmdXfA4WPy-3lm7Oa98j6duDzG5fMAvYX8qGx1XkPEULPgEuAGz9u5rB-kGXVm9STD6n0O0fHpsJrNi8fo8nzwsClOWMheKaq4UqSXIjoAU_fEhWwtKwXBBVAWVrgWXlaSUd4Lqrlakk7VRnNaGSVsN0d3fXRNDShFs-xndVsdDS0l7ltee5bUnedUvZw9kRQ</recordid><startdate>20211201</startdate><enddate>20211201</enddate><creator>Hyder, M. F.</creator><creator>Waseemullah, .</creator><creator>Farooq, M. U.</creator><scope>AAYXX</scope><scope>CITATION</scope></search><sort><creationdate>20211201</creationdate><title>Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques</title><author>Hyder, M. F. ; Waseemullah, . ; Farooq, M. U.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c228t-91a699058e8b0e87d224f5711ec67093e3a576838116b71ab590b85c9615c48f3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2021</creationdate><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Hyder, M. F.</creatorcontrib><creatorcontrib>Waseemullah, .</creatorcontrib><creatorcontrib>Farooq, M. U.</creatorcontrib><collection>CrossRef</collection><jtitle>Engineering, technology &amp; applied science research</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Hyder, M. F.</au><au>Waseemullah, .</au><au>Farooq, M. U.</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques</atitle><jtitle>Engineering, technology &amp; applied science research</jtitle><date>2021-12-01</date><risdate>2021</risdate><volume>11</volume><issue>6</issue><spage>7745</spage><epage>7749</epage><pages>7745-7749</pages><issn>2241-4487</issn><eissn>1792-8036</eissn><abstract>Moving Target Defense (MTD) has recently emerged as a significant cybersecurity technique. Software-Defined Networking (SDN) has the capability to design efficient network architecture due to its programmability and centralized control management. In this paper, a mechanism for the protection against insider reconnaissance has been proposed using a combination of diversity and a shuffling-based approach of MTD. In order to implement the shuffling technique, IP shuffling is used in the insider network. The IP addresses of internal hosts are mapped via real to virtual IP mapping through random IP generation from a pseudo-random mechanism. For the diversity, a multiple servers’ platform is incorporated for different critical LAN services like Domain Name System (DNS), internal web services, etc. This combined diversity and shuffling approach significantly counters the insider reconnaissance targeting critical LAN services. The proposed scheme also exploited open-source IDS to block insider reconnaissance. The proposed solution was implemented using ONOS SDN controller, Mininet simulator, Snort IDS systems. The experimental results substantiate effective protection against insider network reconnaissance at a low computational cost.</abstract><doi>10.48084/etasr.4417</doi><tpages>5</tpages><oa>free_for_read</oa></addata></record>
fulltext fulltext
identifier ISSN: 2241-4487
ispartof Engineering, technology & applied science research, 2021-12, Vol.11 (6), p.7745-7749
issn 2241-4487
1792-8036
language eng
recordid cdi_crossref_primary_10_48084_etasr_4417
source Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals
title Towards Countering the Insider Reconnaissance Using a Combination of Shuffling and Diversity Moving Target Defense Techniques
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-20T01%3A58%3A03IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-crossref&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Towards%20Countering%20the%20Insider%20Reconnaissance%20Using%20a%20Combination%20of%20Shuffling%20and%20Diversity%20Moving%20Target%20Defense%20Techniques&rft.jtitle=Engineering,%20technology%20&%20applied%20science%20research&rft.au=Hyder,%20M.%20F.&rft.date=2021-12-01&rft.volume=11&rft.issue=6&rft.spage=7745&rft.epage=7749&rft.pages=7745-7749&rft.issn=2241-4487&rft.eissn=1792-8036&rft_id=info:doi/10.48084/etasr.4417&rft_dat=%3Ccrossref%3E10_48084_etasr_4417%3C/crossref%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true