Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Diversifying Network Services under Cost Constraints for Better Resilience against Unknown Attacks

Published

Author(s)

Daniel Borbor, Lingyu Wang, Sushil Jajodia, Anoop Singhal

Abstract

Diversity as a security mechanism has received revived interest recently due to its potential for improving the resilience of software and networks against unknown attacks. Recent work show diversity can be modeled and quantified as a security metric at the network level. However, such an effort does not directly provide a solution for improving the network diversity, and existing network hardening approaches are largely limited to handling previously known vulnerabilities by disabling existing services. In this paper, we take the first step towards an automated approach to diversifying network services under various cost constraints in order to improve the network's resilience against unknown attacks.
Proceedings Title
Data and Applications Security and Privacy XXX
Volume
9766
Conference Dates
July 18-21, 2016
Conference Location
Trento, IT
Conference Title
30th IFIP Conference on Data and Application Security and Privacy (DBSEC 2016)

Keywords

Security Metrics, Diversity, Network Security, Zero Day Attack, Network Resilience

Citation

Borbor, D. , Wang, L. , Jajodia, S. and Singhal, A. (2016), Diversifying Network Services under Cost Constraints for Better Resilience against Unknown Attacks, Data and Applications Security and Privacy XXX, Trento, IT, [online], https://doi.org/10.1007/978-3-319-41483-6_21, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=920658 (Accessed March 2, 2024)
Created July 19, 2016, Updated October 12, 2021