Maximization of Network Survivability with Honeypots against Collaborative Attacks in Cloud Environments
Date Issued
2014
Date
2014
Author(s)
Chang, I-Tang
Abstract
Due to the flourish development of information technologies such as fiber-network, virtualization technologies and distributed computing in recent years, lots of new concepts are proposed, and one of them is cloud computing. According to the features of the cloud environment, users can subscribe different kinds of flexible and scalable services on demand without IT infrastructure establishing expenses as well as maintenance expenses, which attracts many enterprises to build their IT environment through the cloud platform. However, there are always some malicious hackers trying to get illegal profits from compromising services provided by enterprises; moreover, they usually group together to launch such a wave of collaborative attack. Hence, such as data breach and service disruption incidents take place frequently and become the nightmare of the service provider.
On the other hand, the development of network defense tools also gets fully-fledged nowadays, which represents that the defender have more defense alternatives to protect the network from external threats. The honeypot is a representative one. As the name suggests, the honeypot is a defense mechanism used to create a decoy to attract, detect, deflect, monitor, and trap attackers, which can serve as a body stunt of the real service without important information. Especially in the cloud environment, honeypots can be leveraged more dynamically and efficiently.
In this thesis, we focus on helping the defender to allocate defense resource such as honeypots in the most efficient way against external attacks. Our scenario is depicted by mathematical programming, and Monte Carlo simulation is applied to solve the problem because of the non-deterministic property of attack-defense strategies in our problem. The ultimate goal is to figure out the optimal defense strategy against the best attack strategy, which is also the defender’s worst case.
Subjects
協同攻擊
網路存活度
雲端運算
誘捕系統
最佳化
資源分配
數學規劃法
蒙地卡羅法
Type
thesis
File(s)![Thumbnail Image]()
Loading...
Name
ntu-103-R01725047-1.pdf
Size
23.32 KB
Format
Adobe PDF
Checksum
(MD5):2bb0710a49dd920007dc95f61635ac1d
