Enabling Defensive Deception by Leveraging Software Defined Networks

Belalis, Ilias; Kavallieratos, Georgios; Gkioulos, Vasileios; Spathoulas, Georgios

Belalis, Ilias; Kavallieratos, Georgios; Gkioulos, Vasileios; Spathoulas, Georgios

Chapter

Accepted version

View/Open

Belalis (Locked)

URI

https://hdl.handle.net/11250/2685618

Date

2020

Metadata

Show full item record

Collections

Institutt for informasjonssikkerhet og kommunikasjonsteknologi [1555]
Publikasjoner fra CRIStin - NTNU [19491]

Abstract

Computer networks are critical for modern society and protecting their security is of high importance. Due to their increasing size and complexity providing the required cyber security counter measures has become a very difficult task. One of the most recent approaches is to employ defensive deception techniques, in order to provide to the attacker a false perception about the protected network and thus increase the effort that is needed to carry on a successful intrusion. In this paper we present a comprehensive literature review and a comparison of existing SDN based defensive deception methods. Additionally, we propose a novel deception mechanism that combines moving target and honeypots approaches and carry out extensive tests of its functionality.

Publisher

International Academy, Research and Industry Association (IARIA)