Science News
from research organizations

Shuffling may be best cybersecurity defense

Date:
March 23, 2016
Source:
George Mason University School of Management
Summary:
Researchers propose a “moving-target” defense against distributed denial-of-service attacks. The defense works by repeatedly shuffling client-to-server assignments to identify and eventually quarantine malicious clients.
Share:
FULL STORY

The graphic shows a simple example of the shuffling or “moving target” defense. The protected system has two servers for normal operation, and each is under attack by a malicious client blended with legitimate clients (C1-C4). The “moving target” defense introduces two additional servers and repeatedly shuffles clients until only one server is being attacked.
Credit: Image courtesy of George Mason University School of Management

A team of George Mason researchers proposes a "moving-target" defense against distributed denial-of-service attacks. The defense works by repeatedly shuffling client-to-server assignments to identify and eventually quarantine malicious clients.

Denial-of-service attacks, which work by overwhelming a target system thereby forcing it to shut down and deny service to legitimate users, are increasing in severity as assault methods become more sophisticated and attackers' goals more sinister. These types of attacks hit a record high in 2015 increasing by as much as 132 percent over the previous year according to Digital Trends.

"Our research is vital as a real-world solution to these attacks, which are one of the most critical cybersecurity threats today, crippling online businesses with downed websites, financial losses and damaged client relationships," says Angelos Stavrou who helped conduct the research and teaches in Mason's MS in Management of Secure Information Systems program.

The research on this innovative cybersecurity defense is starting to get industry recognition having just been published in the March 2016 issue of IEEE Computer magazine.

The graphic below shows a simple example of the shuffling or "moving target" defense. The protected system has two servers for normal operation, and each is under attack by a malicious client blended with legitimate clients (C1-C4). The "moving target" defense introduces two additional servers and repeatedly shuffles clients until only one server is being attacked.

Eventually, in a process that involves multiple servers and multiple rounds of shuffling, it is possible to identify and segregate the attackers. The system, even when under attack, will be available to most legitimate clients -- preserving the organization's reputation, productivity and revenue.


Story Source:

Materials provided by George Mason University School of Management. Note: Content may be edited for style and length.


Journal Reference:

  1. Angelos Stavrou, Daniel Fleck, Constantinos Kolias. On the Move: Evading Distributed Denial-of-Service Attacks. Computer, 2016; 49 (3): 104 DOI: 10.1109/MC.2016.85

Cite This Page:

George Mason University School of Management. "Shuffling may be best cybersecurity defense." ScienceDaily. ScienceDaily, 23 March 2016. <www.sciencedaily.com/releases/2016/03/160323190029.htm>.
George Mason University School of Management. (2016, March 23). Shuffling may be best cybersecurity defense. ScienceDaily. Retrieved May 24, 2017 from www.sciencedaily.com/releases/2016/03/160323190029.htm
George Mason University School of Management. "Shuffling may be best cybersecurity defense." ScienceDaily. www.sciencedaily.com/releases/2016/03/160323190029.htm (accessed May 24, 2017).

RELATED STORIES