A network deception defense mechanism based on virtual topology generation

Binghui Wang; Bin Lu

doi:10.1117/12.2679362

16 June 2023 A network deception defense mechanism based on virtual topology generation

Binghui Wang, Bin Lu

Author Affiliations +

Proceedings Volume 12702, International Conference on Intelligent Systems, Communications, and Computer Networks (ISCCN 2023); 127022P (2023) https://doi.org/10.1117/12.2679362
Event: International Conference on Intelligent Systems, Communications, and Computer Networks (ISCCN 2023), 2023, Changsha, China

Abstract

To address the problem that traditional network defense techniques are difficult to cope with scanning attacks launched by internal attackers, this paper proposes a Virtual Network Topology Deception Defense mechanism(VNTDD)based on the idea of deception defense. In order to solve the problem of lack of randomness and security of virtual network topology, we divide the virtual network topology into three categories: forwarding nodes, real nodes and virtual nodes, and analyze their deployment locations and numbers respectively to generate a random virtual network topology, and enables the deployment of virtual network topology on the underlying real network through traffic control mechanisms. Finally, through experimental analysis, the VNTDD deception defense mechanism proposed in this paper can effectively prolong the scanning process of the intranet by internal attackers.

Citation Download Citation

Binghui Wang and Bin Lu "A network deception defense mechanism based on virtual topology generation", Proc. SPIE 12702, International Conference on Intelligent Systems, Communications, and Computer Networks (ISCCN 2023), 127022P (16 June 2023); https://doi.org/10.1117/12.2679362

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

;

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
7 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Defense and security

Network security

RELATED CONTENT

Human machine analytics for closed loop sense making in time...
Proceedings of SPIE (May 03 2017)

Wireless networks of opportunity in support of secure field operations
Proceedings of SPIE (February 18 1997)

Novel mechanism of network protection against the new generation of...
Proceedings of SPIE (June 18 2012)

IDMA improving the defense against malicious attack for mobile...
Proceedings of SPIE (May 02 2008)

Autonomous mobile mesh networks and applications for defense network centric...
Proceedings of SPIE (May 02 2006)

Research on deceptive dynamic defense method based on SDN
Proceedings of SPIE (October 11 2023)

Implementation of utility based resource optimization protocols on ITA Sensor...
Proceedings of SPIE (May 07 2010)

Subscribe to Digital Library

Receive Erratum Email Alert

Keywords/Phrases

Search In:

Publication Years