Keeping Intruders at Large - A Graph-theoretic Approach to Reducing the Probability of Successful Network Intrusions

Paulo Shakarian; Damon Paulo; Massimiliano Albanese; Sushil Jajodia

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Keeping Intruders at Large - A Graph-theoretic Approach to Reducing the Probability of Successful Network Intrusions

Topics: Insider Threats and Countermeasures; Network Security

In Proceedings of the 11th International Conference on Security and Cryptography - Volume 0ICETE, 19-30, 2014 , Vienna, Austria

Authors: Paulo Shakarian ¹ ; Damon Paulo ² ; Massimiliano Albanese ³ and Sushil Jajodia ⁴

Affiliations: ¹ Arizona State University, United States ; ² U.S. Military Academy, United States ; ³ George Mason University, United States ; ⁴ George Mason University and The MITRE Corporation, United States

Keyword(s): Moving Target Defense, Adversarial Modeling, Graph Theory.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Insider Threats and Countermeasures ; Network Security ; Wireless Network Security

Abstract: It is well known that not all intrusions can be prevented and additional lines of defense are needed to deal with intruders. However, most current approaches use honeynets relying on the assumption that simply attracting intruders into honeypots would thwart the attack. In this paper, we propose a different and more realistic approach, which aims at delaying intrusions, so as to control the probability that an intruder will reach a certain goal within a specified amount of time. Our method relies on analyzing a graphical representation of the computer network’s logical layout and an associated probabilistic model of the adversary’s behavior. We then artificially modify this representation by adding “distraction clusters” – collections of interconnected virtual machines – at key points of the network in order to increase complexity for the intruders and delay the intrusion. We study this problem formally, showing it to be NP-hard and then provide an approximation algo- rithm that exhi bits several useful properties. Finally, we present experimental results obtained on a prototypal implementation of the proposed framework. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 3.138.175.166

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Shakarian, P.; Paulo, D.; Albanese, M. and Jajodia, S. (2014). Keeping Intruders at Large - A Graph-theoretic Approach to Reducing the Probability of Successful Network Intrusions. In Proceedings of the 11th International Conference on Security and Cryptography (ICETE 2014) - SECRYPT; ISBN 978-989-758-045-1; ISSN 2184-3236, SciTePress, pages 19-30. DOI: 10.5220/0005013800190030

@conference{secrypt14,
author={Paulo Shakarian. and Damon Paulo. and Massimiliano Albanese. and Sushil Jajodia.},
title={Keeping Intruders at Large - A Graph-theoretic Approach to Reducing the Probability of Successful Network Intrusions},
booktitle={Proceedings of the 11th International Conference on Security and Cryptography (ICETE 2014) - SECRYPT},
year={2014},
pages={19-30},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005013800190030},
isbn={978-989-758-045-1},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 11th International Conference on Security and Cryptography (ICETE 2014) - SECRYPT
TI - Keeping Intruders at Large - A Graph-theoretic Approach to Reducing the Probability of Successful Network Intrusions
SN - 978-989-758-045-1
IS - 2184-3236
AU - Shakarian, P.
AU - Paulo, D.
AU - Albanese, M.
AU - Jajodia, S.
PY - 2014
SP - 19
EP - 30
DO - 10.5220/0005013800190030
PB - SciTePress