The Journal of the Institute of Internet, Broadcasting and Communication (한국인터넷방송통신학회논문지)

The Institute of Internet, Broadcasting and Communication (한국인터넷방송통신학회)
권호 표지
DOI QR코드

DOI QR Code

Malicious Attack Success Probability on the Change of Vulnerable Surfaces in MTD-SDR System

MTD-SDR 시스템의 취약요소 변경에 따른 악의적 공격 성공 확률

  • 기장근 (공주대학교 전기전자제어공학부) ;
  • 이규대 (공주대학교 정보통신공학부)
  • Received : 2018.08.09
  • Accepted : 2018.10.05
  • Published : 2018.10.31
Download PDF
⟨ Previous Next ⟩

Abstract

The MTD-based approach changes various operating parameters dynamically so that the vulnerability of the system can be protected from the malicious attack. In this paper, random/serial scanning/jamming attack success probabilities have been mathematically analyzed and verified through simulation to improve the security of the wireless communication systems in which the MTD-SDR technologies are applied. As a result, for random scanning attacks, attack success probability increases as the change period of transmission channel increases, while for random jamming attacks there is no change. The attack success probability patterns for serial attacks are similar to those of random attacks, but when the change period of transmission channel approaches to the total number of transmission channels, the success probability of serial attack is getting greater than that of random attack, up to twice in jamming attacks and up to 36% in scanning attacks.

MTD(Moving Target Defense)는 자가 복원력이 있는 무선 통신 시스템을 구축할 수 있도록 대상 시스템의 다양한 구조 및 운영 관련 파라미터들을 동적으로 변경시키도록 설계함으로써 공격자의 악의적 공격으로부터 시스템의 취약점을 보호하는 기술이다. 본 논문에서는 MTD-SDR 기술을 기반으로 하는 통신 시스템에서 랜덤/순서적 스캐닝/재밍 공격 성공 확률에 대한 식을 유도하고 시뮬레이션을 통해 그 결과를 검증하였다. 결과적으로 랜덤 스캐닝 공격의 경우에는 전송채널 변화주기 값이 증가할수록 공격성공률이 증가하는 반면, 랜덤 재밍 공격의 경우에는 변화가 없다. 순서적 공격의 경우에는 랜덤 공격과 유사한 경향의 성공률 패턴을 보이지만 전송채널 변화주기가 커져서 전체 전송채널 수에 접근할수록 재밍 공격의 경우에는 최대 2배, 스캐닝 공격의 경우에는 최대 36% 정도 랜덤 공격에 비해 공격 성공률이 높은 것으로 나타났다.

Keywords

References

  1. Hee-Sook Kim, "A Study on Security System of 4G Network System," Journal of The Institute of Internet, Broadcasting and Communication (JIIBC), Vol.16, No.6, pp.15-23, Dec., 2016. DOI: https://doi.org/10.7236/JIIBC.2016.16.6.15
  2. Myongyeal Lee, Jaepyo Park, "Analysis and Study on Invasion Threat and Security Measures for Smart Home Services in IoT Environment," Journal of The Institute of Internet, Broadcasting and Communication (JIIBC), Vol.16, No.5, pp.27-32, Oct., 2016. DOI: http://dx.doi.org/10.7236/JIIBC.2016.16.5.27
  3. Se-Hwan Park, Jong-Kyu Park, "IoT Industry & Security Technology Trends," International Journal of Advanced Smart Convergence (IJASC), Vol. 5, No. 3, pp. 27-31, Sept., 2016. DOI: https://doi.org/10.7236/ijasc.2016.5.3.27
  4. Yong-Hee Jeon, "A Study on the Security Modeling of Internet of Things(IoT)," Journal of Korean Institute of Information Technology, Vol.15, No.12, pp.17-27, Dec., 2017. DOI: https://doi.org/10.14801/jkiit.2017.15.12.17
  5. Sushil Jajodia, Anup K. Ghosh, Vipin Swarup, Cliff Wang, X. Sean Wang, "Moving Target Defense: Creating Asymmetric Uncertainty for Cyber Threats", Springer, ISBN:1461409764 9781461409762, 2011.
  6. Rui Zhuang, Scott A. DeLoach, Xinming Ou, "Towards a Theory of Moving Target Defense", Proceedings of the First ACM Workshop on Moving Target Defense, pp.31-40, Nov. 7, 2014. DOI: https://doi.org/10.1145/2663474.2663479
  7. Jun Xu, Pinyao Guo, Mingyi Zhao, Robert F. Erbacher, Minghui Zhu, Peng Liu, "Comparing Different Moving Target Defense Techniques", Proceedings of the First ACM Workshop on Moving Target Defense, pp.97-107, Nov. 7, 2014. DOI: https://doi.org/10.1145/2663474.2663486
  8. Executive Office of the President National Science and Technology Council, "TRUSTWORTHY CYBERSPACE: STRATEGIC PLAN FOR THE FEDERAL CYBERSECURITY RESEARCH AND DEVELOPMENT PROGRAM", https://www.nitrd. gov/pubs/Fed_Cybersecurity_RD_Strategic_Plan_ 2011.pdf, pp.8-9, Dec., 2011.
  9. Firas Almoualem, Pratik Satam, Jang-Geun Ki, Salim Hariri, "SDR-Based Resilient Wireless Communications," International Conference on Cloud and Autonomic Computing (ICCAC), Sept., 2017. DOI: https://doi.org/10.1109/ICCAC.2017.18
  10. Jang-Geun Ki, Kyu-Tae Lee, "Performance Analysis of SDR Communication System Based on MTD Technology," Journal of The Institute of Internet, Broadcasting and Communication (JIIBC), Vol.17, No.2, pp.51-56, Apr., 2017. DOI: https://doi.org/10.7236/JIIBC.2017.17.2.51
  11. Jesus Pacheco, Cihan Tunc, and Salim Hariri, "Design and Evaluation of Resilient Infrastructures Systems for Smart Cities," IEEE International Smart Cities Conference (ISC2), Sept., 2016.
  12. Jose Raul Machado-Fernandez, "Software Defined Radio: Basic Principles and Applications," Revista Facultad de Ingenieria, Vol.24, No.38, pp.79-96, 2015. DOI: https://doi.org/10.19053/01211129.3160
  13. Chi-Yuan Chen, Fan-Hsun Tseng, Kai-Di Chang, Han-Chieh Chao, and Jiann-Liang Chen, "Reconfigurable Software Defined Radio and Its Applications," Tamkang Journal of Science and Engineering, Vol.13, No.1, pp.29-38, 2010.