计算机工程与应用
計算機工程與應用
계산궤공정여응용
COMPUTER ENGINEERING AND APPLICATIONS
2014年
20期
96-99
,共4页
移动目标防御%软件栈多样性%随机切换%网络安全
移動目標防禦%軟件棧多樣性%隨機切換%網絡安全
이동목표방어%연건잔다양성%수궤절환%망락안전
moving target defense%software stack diversity%random switch%cyberspace security
移动目标防御技术是近年来美国科学技术委员会提出的网络空间“改变游戏规则”的革命性技术之一。在SCIT模型基础上,提出一种基于服务器切换和清洗的移动目标防御系统,通过引入软件的多样性、系统的随机性和不可预测性使防护对象机动化,以改进其安全性。实验结果表明,改进后系统对攻击者的要求更高,系统被入侵的概率显著降低,系统安全性得到进一步提升。
移動目標防禦技術是近年來美國科學技術委員會提齣的網絡空間“改變遊戲規則”的革命性技術之一。在SCIT模型基礎上,提齣一種基于服務器切換和清洗的移動目標防禦繫統,通過引入軟件的多樣性、繫統的隨機性和不可預測性使防護對象機動化,以改進其安全性。實驗結果錶明,改進後繫統對攻擊者的要求更高,繫統被入侵的概率顯著降低,繫統安全性得到進一步提升。
이동목표방어기술시근년래미국과학기술위원회제출적망락공간“개변유희규칙”적혁명성기술지일。재SCIT모형기출상,제출일충기우복무기절환화청세적이동목표방어계통,통과인입연건적다양성、계통적수궤성화불가예측성사방호대상궤동화,이개진기안전성。실험결과표명,개진후계통대공격자적요구경고,계통피입침적개솔현저강저,계통안전성득도진일보제승。
Moving target defense technology is one of the cyberspace revolutionary technologies“change the rules of game”that National Science and Technology Council proposed. Based on the SCIT model, this paper presents a moving target defense system in view of server-based switching and self-cleaning, by introducing software diversity, randomness and unpredictability of the system, so that it makes protection object motorize to improve its security. Experimental results show that the improved system sets an even higher demand on attacker, the rate that system is invaded reduces, system security is further improved.
