摘要
随着自动化和智能化攻击技术的发展,网络空间安全形势日益严峻,仅靠传统的防御机制已经无法满足当前安全防护的需求.移动目标防御(MTD)为了扭转网络攻防“易攻难守”的被动局面应运而生,通过增加网络和系统的不确定性、随机性和动态性对抗同类型攻击,通过有效降低其确定性、相似性和静态性降低攻击成功率.当前,移动目标防御的脆弱性也较少被系统分析,且移动目标防御在新场景下的具体应用较少被具体总结.鉴于此,首先阐述移动目标防御的产生背景和基础理论;其次,对移动目标防御相关研究进行综述,并分析移动目标防御的脆弱性;接着,总结移动目标防御在物理信息系统、云环境、智能电网和对抗样本防御等新兴领域的应用;最后,对移动目标防御的研究前景进行展望.
With the development of autonomous and intelligent attack technologies,the situation of cybersecurity is becoming increasingly severe,and the traditional defense system can no longer meet the current security requirements.To reverse the passive situation of the network defese,moving target defense(MTD)emerges as the time required,which increases the uncertainty,randomness,and diversity of network and system to resist the same type of attack,and greatly decreases the success rate of attack by effectively reducing its certainty,similarity,and static.At present,the vulnerability of MTD has not been systematically analyzed,and the specific application of MTD in new scenarios has not been summarized.Firstly,the background and basic theoretical knowledge of MTD are illustrated.Secondly,the research related to MTD is reviewed and the vulnerability is summarized.Then,we introduce how MTD can be applied to emerging fields such as cyber-physical systems,cloud environments,smart grids,and the defense of adversarial examples.Finally,the research prospects of MTD are analyzed.
作者
姚倩
熊鑫立
王永杰
侯冬冬
YAO Qian;XIONG Xin-li;WANG Yong-jie;HOU Dong-dong(College of Electronic Engineering,National University of Defense Technology,Hefei 230037,China;Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation,National University of Defense Technology,Hefei 230037,China)
出处
《控制与决策》
EI
CSCD
北大核心
2023年第11期3025-3038,共14页
Control and Decision
关键词
移动目标防御
脆弱性
新场景应用
动态防御
moving target defense
vulnerability
the application in new scenarios
dynamic defense
