Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Unknown threat-oriented dynamic network change decision method and system

A dynamic network, unknown threat technology, applied in the field of network security, can solve problems such as limited, inapplicable defense costs, and increased network system performance overhead.

Inactive Publication Date: 2019-02-12
PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
View PDF4 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Although existing studies have proposed a variety of MTD technologies and implementation methods for different network security threats, the simple superposition of different MTD technologies will greatly increase the performance overhead of the network system, and the "at all costs" defense cannot be applied to networks with limited defense costs. actual conditions

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Unknown threat-oriented dynamic network change decision method and system
  • Unknown threat-oriented dynamic network change decision method and system
  • Unknown threat-oriented dynamic network change decision method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0063] The present invention will be described in further detail below in conjunction with the accompanying drawings and specific embodiments, but the protection scope of the present invention is not limited thereto.

[0064] Moving Target Defense (MTD) is developed from the idea of ​​moving targets. The basic structure is as follows: figure 1 shown. MTD pseudo-randomly changes the configuration and status of target network system components, such as IP addresses, ports, and system fingerprints, to continuously and dynamically transfer the resource vulnerability of the protected system to trick, confuse, and confuse the attacker's detection , thus increasing the difficulty and cost of the attack. The basic working principle is as follows:

[0065] a. Formulate security policies and functional tasks of the target network system 1, and initialize network resources;

[0066] b. Select the jump element and jump cycle according to the pre-customized security policy, and realize ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of network security, and in particular relates to an unknown threat-oriented dynamic network change decision method and system. The method comprises the steps of: constructing the type space of a player according to the current network state; judging the type of the opposite side by the player according to the prior belief, and obtaining a selectable offensive and defensive strategy set according to the type; obtaining the system state transition probability according to the network state and the offensive and defensive strategy set; obtaining earnings of both offensive and defensive game sides for the selected offensive and defensive strategy, and, in combination with the system state transition probability, constructing a moving target defencemodel based on an incomplete information Markov game; and equivalently converting the solution of the moving target defence model into a target function, so that the optimal moving target defence strategy is obtained. By means of the unknown threat-oriented dynamic network change decision method and system in the invention, the unknown threat-oriented optimal defence strategy can be selected based on limited network resources; and thus, the technical effect that the network performance overhead and MTD defence earnings are balanced can be realized.

Description

technical field [0001] The present invention relates to the technical field of network security, in particular to a dynamic network change decision-making method in the face of unknown threats and a system thereof. Background technique [0002] Under the situation that network attacks tend to be combined and automated, existing defense methods are difficult to effectively deal with increasingly complex network intrusions, and the asymmetry of network attack and defense positions is increasing day by day. In order to change this situation of "easy to attack but difficult to defend", the technology of Moving Target Defense (MTD) came into being. It aims to achieve random, dynamic, and heterogeneous changes in the protected network by changing the attributes of system elements in a way that is controllable by the defender, thereby destroying the attack chain’s requirement for a definite, static, and isomorphic dependency on the operating environment, thereby increasing the numb...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1441H04L63/20
Inventor 张玉臣刘小虎雷程谭晶磊程相然刘璟张恒巍马军强鲁晓彬龚会芳
Owner PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com