CYBER DEFENSE NETWORK MANEUVER COMMANDER

CYBER DEFENSE NETWORK MANEUVER COMMANDER - CYBER DEFENSE...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
TDSP-10-0072 CYBER DEFENSE NETWORK MANEUVER COMMANDER Paul Beraud Raytheon Company 8333 Bryan Dairy Rd, Largo, FL 33777 Alen Cruz Raytheon Company 8333 Bryan Dairy Rd, Largo, FL 33777 Suzanne Hassell Raytheon Company 8333 Bryan Dairy Rd, Largo, FL 33777 Juan Sandoval Raytheon Company 8333 Bryan Dairy Rd, Largo, FL 33777 Jeffrey J. Wiley Raytheon Company 1200 S. Jupiter Rd., Garland, TX 75042 Abstract Network Maneuver Commander (NMC) is a research project to develop a prototype cyber command and control (C2) system that maneuvers network-based elements preemptively, and to develop performance metrics to be used for the evaluation of cyber dynamic defense solutions. The Network Maneuver Commander addresses the gap area between active information operations & reactive information assurance defenses, by focusing on the introduction of artificial diversity of hardware platforms, operating systems, IP addresses and hypervisors. NMC also establishes metrics to determine the benefit of these defensive techniques. The goals of the research were to increase the investment an attacker must make to succeed, increase the exposure of an attacker to detection as the attacker is forced to out-maneuver target reconfigurations, increase the uncertainty of the success of the attack, increase the survivability in the presence of attacks, and to define metrics associated with cyber operations for dynamic defense. Index terms - cyber security; dynamic defense; command and control; network maneuver; defense metrics; I. INTRODCUTION In order to decrease the success of cyber attackers, new and proactive defenses strategies are required. Conventionally, defense in the cyber domain has relied upon a static, layered, “defense in depth” approach, with a focus on perimeter protection. By establishing a new defensive technique, network maneuvering, the benefit of each individual layer provides can be relocated, helping defend against the most effective suite of malicious attacks. In order to characterize the performance of cyber dynamic defense solutions, metrics need to be defined and captured. Conventionally, defense in the cyber domain has relied upon a layered, “defense in depth” approach. By establishing metrics for dynamic defense, the benefit each individual layer provides can be determined, helping select the most effective suite of defensive techniques. A. Overview Proactive computer network defense must anticipate the emergence of new vulnerabilities, take action to avoid threat actors seeking to exploit these vulnerabilities, and disrupt the actions of successful intruders to increase their work factor and minimize their impact. The purpose of this paper is two-fold: 1) to describe the goals of the Network Maneuver Commander, the prototype developed, and the research conducted, to preemptively maneuver network elements to avoid cyber attack; and 2) to define metrics associated with cyber operations for dynamic defense. These metrics are captured from the perspective of the defender, as well as that of the attacker.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 9

CYBER DEFENSE NETWORK MANEUVER COMMANDER - CYBER DEFENSE...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online