CRII: SaTC: Creating and Managing Structurally-Morphing IT Systems - Moving Targets

CRII：SaTC：创建和管理结构变化的 IT 系统 - 移动目标

• 批准号: 1850406
• 负责人: Alexandru Bardas
• 金额: $ 17.49万
• 依托单位: University of Kansas Center for Research Inc
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2019
• 资助国家: 美国
• 起止时间: 2019-06-01 至 2023-05-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1850406&HistoricalAwards=false
• 关键词: CRII; SaTC; Creating; Managing; Structurally

Current information technology (IT) systems are relatively static from a configuration perspective and give adversaries the valuable advantage of time for breaching them. A new concept, called Moving Target Defense or MTD, dynamically reconfigures systems to increase uncertainty and complexity for attackers, reduce their window of opportunity, and raise the costs of their reconnaissance and attack endeavors. All of these contribute towards increased security. Unfortunately, current moving target defense approaches tend to address only individual aspects or components of an IT system and not holistically the entire system. While such efforts are important building-blocks, how a large complex system can be dynamically reconfigured and adapted remains an open research problem. This project investigates the feasibility and challenges related to adopting moving target defense for creating and managing structurally morphing IT systems in order to better protect them. It also provides opportunities for curriculum enhancement via integrating research results in cyber defense courses, training students at different levels and from under-represented groups and informing the security research community about opportunities and impediments to enterprise system defenses via moving target defense.The project develops a comprehensive framework/platform for creating and managing structurally changing IT systems. The framework consists of several components: a methodology to abstract the functionality and structure of enterprise systems into a high-level multi-layered model, a compiler that converts the abstract requirements into an actual system, and a moving target defense strategy generator to assist and proactively evaluate the cost of various combinations of system changes against the security benefits achieved and performance overheads incurred. The framework is prototyped leveraging readily available virtualized environments, containerization techniques and configuration management tools. Vital component operations belonging to the moving target defense infrastructure are protected using the notion of hardware supported security enclaves to further enhance the security of the framework.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

当前的信息技术(IT)系统从配置的角度来看是相对静态的，并为对手提供了宝贵的时间优势来攻破它们。一种名为移动目标防御或MTD的新概念动态重新配置系统，以增加攻击者的不确定性和复杂性，减少他们的机会窗口，并提高他们的侦察和攻击努力的成本。所有这些都有助于加强安全。不幸的是，当前的移动目标防御方法倾向于只处理IT系统的个别方面或组件，而不是整体地处理整个系统。虽然这些努力是重要的组成部分，但如何动态重新配置和适应一个大型复杂系统仍然是一个悬而未决的研究问题。该项目调查了采用移动目标防御来创建和管理结构变化的IT系统以更好地保护它们的可行性和挑战。它还通过整合网络防御课程的研究成果，培训不同水平和代表性不足群体的学生，并通过移动目标防御向安全研究社区告知企业系统防御的机会和障碍，为课程优化提供机会。该项目开发了一个全面的框架/平台，用于创建和管理结构不断变化的IT系统。该框架由几个组件组成：将企业系统的功能和结构抽象为高级多层模型的方法；将抽象需求转换为实际系统的编译器；以及移动目标防御策略生成器，用于根据所获得的安全收益和产生的性能开销来辅助和主动评估各种系统更改组合的成本。该框架的原型利用了现成的虚拟环境、集装化技术和配置管理工具。属于移动目标防御基础设施的关键组件操作使用硬件支持的安全飞地的概念进行保护，以进一步增强框架的安全性。该奖项反映了NSF的法定使命，并通过使用基金会的智力优势和更广泛的影响审查标准进行评估，被认为值得支持。

项目成果

MisMesh: Security Issues and Challenges in Service Meshes

• DOI: 10.1007/978-3-030-63086-7_9
• 发表时间: 2020
• 作者: Dalton A. Hahn;Drew Davidson;Alexandru G. Bardas

Measuring the Prevalence of the Password Authentication Vulnerability in SSH

测量 SSH 中密码身份验证漏洞的流行程度

• DOI: 10.1109/icc40277.2020.9148912
• 发表时间: 2020
• 期刊: n IEEE International Conference on Communications (ICC
• 作者: Andrews, Ron;Hahn, Dalton A.;Bardas, Alexandru G.
• 通讯作者: Bardas, Alexandru G.

Demand Responsive Dynamic Pricing Framework for Prosumer Dominated Microgrids using Multiagent Reinforcement Learning

• DOI: 10.1109/naps50074.2021.9449714
• 发表时间: 2020-09
• 期刊: 2020 52nd North American Power Symposium (NAPS)
• 作者: Amin Shojaeighadikolaei;Arman Ghasemi;Kailani R. Jones;Alexandru G. Bardas;M. Hashemi;R. Ahmadi

A Multi-Agent Deep Reinforcement Learning Approach for a Distributed Energy Marketplace in Smart Grids

智能电网分布式能源市场的多智能体深度强化学习方法

• DOI: 10.1109/smartgridcomm47815.2020.9302981
• 发表时间: 2020
• 期刊: IEEE International Conference on Smart Grid Communications (SmartGridComm
• 作者: Ghasemi, Arman;Shojaeighadikolaei, Amin;Jones, Kailani;Hashemi, Morteza;Bardas, Alexandru G.;Ahmadi, Reza
• 通讯作者: Ahmadi, Reza

Deploying Android Security Updates: an Extensive Study Involving Manufacturers, Carriers, and End Users

• DOI: 10.1145/3372297.3423346
• 发表时间: 2020-10
• 期刊: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security
• 作者: Kailani R. Jones;T. Yen;S. C. Sundaramurthy;Alexandru G. Bardas