TY - GEN
T1 - Revisiting a Probabilistic Moving Target Defense Strategy to Handle Attacks Against Network Nodes with Multiple Resources
AU - Ahmad Kassem, Jamil
AU - Rifà-Pous, Helena
AU - Garcia-Alfaro, Joaquin
N1 - Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Switzerland AG 2025.
PY - 2025/1/1
Y1 - 2025/1/1
N2 - Traditional cyber defense strategies rely on a linear approach that involves detecting threats, selecting defenses, and mitigating attacks; yet, they struggle with emerging, unrecognized, and advanced threats. In search of a more robust solution, researchers have explored innovative strategies to maintain cybersecurity in a network without prior knowledge of the adversary or the specific attack being executed. One such strategy is known as Moving Target Defense (MTD). Leveraging Bayesian Stackelberg game theory, we establish optimal strategies for the defender and adversary, showcasing how the defender can reduce costs by steering attacks away from higher criticality nodes. This approach helps the defender implement a novel MTD logic model for either diversion or minimization of the attack damages. We use simulation results to show how our approach surpasses previous strategies. Our approach offers improvements in managing a multitude of resources. The new approach, while not addressing the known drawbacks, lays the foundation for more advanced MTD models that can incorporate a more detailed representation of system resources.
AB - Traditional cyber defense strategies rely on a linear approach that involves detecting threats, selecting defenses, and mitigating attacks; yet, they struggle with emerging, unrecognized, and advanced threats. In search of a more robust solution, researchers have explored innovative strategies to maintain cybersecurity in a network without prior knowledge of the adversary or the specific attack being executed. One such strategy is known as Moving Target Defense (MTD). Leveraging Bayesian Stackelberg game theory, we establish optimal strategies for the defender and adversary, showcasing how the defender can reduce costs by steering attacks away from higher criticality nodes. This approach helps the defender implement a novel MTD logic model for either diversion or minimization of the attack damages. We use simulation results to show how our approach surpasses previous strategies. Our approach offers improvements in managing a multitude of resources. The new approach, while not addressing the known drawbacks, lays the foundation for more advanced MTD models that can incorporate a more detailed representation of system resources.
KW - Cyber defense
KW - Cybersecurity
KW - Game theory
KW - Logic model
KW - Moving target defense
UR - https://www.scopus.com/pages/publications/105000954280
U2 - 10.1007/978-3-031-85363-0_34
DO - 10.1007/978-3-031-85363-0_34
M3 - Conference contribution
AN - SCOPUS:105000954280
SN - 9783031853623
T3 - Lecture Notes in Networks and Systems
SP - 536
EP - 554
BT - Advances in Information and Communication - Proceedings of the 2025 Future of Information and Communication Conference, FICC 2025
A2 - Arai, Kohei
PB - Springer Science and Business Media Deutschland GmbH
T2 - Future of Information and Communication Conference, FICC 2025
Y2 - 28 April 2025 through 29 April 2025
ER -