Mimic Defense Research Articles

Mimic Defense Structured Information System Threat Identification and Centralized Control

With the speeding up of the informatization process of our national economy and social development, the degree of informatization in our country is getting higher and higher. Information system has become the key infrastructure of our country. The security of these basic information networks and important information systems has been seriously related to national security and social stability, to the collective interests of enterprises, and to the vital interests of the broad masses of the people. Increasing application in improving work efficiency and economic benefits at the same time, the increasingly com-plex information system has also brought greater challenges to operation and maintenance managers. The use of known or unknown vulnerabilities, causing damage to information systems, stealing sensitive information, endangering the normal operation of business systems and other behaviors, has become one of the main causes of various security incidents. How to effectively deal with the vulnerability threat and various vulnerability problems of enterprise information systems, concentrate on the implementation of information security vulnerability warning related risks, and provide solutions to related vulnerability threats, have become an urgent problem to be solved. Therefore, we construct the mimic structured enterprise information system by establishing the threat identification system through unified management to form a comprehensive and secure cyber threat management system.

Mimic Geographic Information System

With the development of the Internet, the geographic information system gets a chance to develop rapidly. Aiming at the security problems of existing geographic information systems, a Mimic Geographic Information System, i.e. M-GIS, based on mimic defense is proposed to improve the security of geographic information systems. The system consists of heterogeneous redundancy geographic information execution bodies pool, request distributor, scheduler and arbiter. Firstly, the scheduler dynamically selects the geographic information execution bodies set for processing, and then makes a mimic decision on the processing results. The experimental results show that the mimic system is more security than traditional system.

Scientific workflow execution system based on mimic defense in the cloud environment

With more large-scale scientific computing tasks being delivered to cloud computing platforms, cloud workflow systems are designed for managing and arranging these complicated tasks. However, multi-tenant coexistence service mode of cloud computing brings serious security risks, which will threaten the normal execution of cloud workflows. To strengthen the security of cloud workflows, a mimic cloud computing task execution system for scientific workflows is proposed. The idea of mimic defense contains mainly three aspects: heterogeneity, redundancy, and dynamics. For heterogeneity, the diversities of physical servers, hypervisors, and operating systems are integrated to build a robust system framework. For redundancy, each sub-task of the workflow will be executed simultaneously by multiple executors. Considering efficiency and security, a delayed decision mechanism is proposed to check the results of task execution. For dynamics, a dynamic task scheduling mechanism is devised for switching workflow execution environment and shortening the life cycle of executors, which can confuse the adversaries and purify task executors. Experimental results show that the proposed system can effectively strengthen the security of cloud workflow execution.

Mimic defense: a designed‐in cybersecurity defense framework

In recent years, both academia and industry in cyber security have tried to develop innovative defense technologies, expecting that to change the rules of the game between attackers and defenders. The authors start by analysing the root causes of security problems in cyberspace: (i) vulnerabilities in cyber systems are universal; (ii) current cyber systems are static, predictable and monoculture which allows adversaries to plan and launch attacks effectively; (iii) existing techniques cannot detect and eliminates attacks employing unknown vulnerabilities. Based on their analysis, they develop a novel defense framework, mimic defense (MD), that employs ‘dynamic, heterogeneity, redundancy (DHR)’ mechanism to defense cyber attacks. The main ideas behind MD are: constructing diverse functional equivalent variants for the protected target; scheduling some variants to run in parallel dynamically; and adopting policy-based arbitration mechanism to decide whose results of current running variants are correct. Theoretical analysis and simulation results show that DHR can significantly increase the difficulties for attackers and enhance the security of cyber systems, and the security enhancement can be more than ten times. They also present a proof-of-principle prototype that employ MD, mimic router, to examine its effectiveness. Finally, they conclude its limitations.

Applying a Combination of Mimic Defense and Software Diversity in the Software Security Industry

Applying a Combination of Mimic Defense and Software Diversity in the Software Security Industry

A Review of the Basic Theory of Mimic Defense

A Review of the Basic Theory of Mimic Defense

Mimic Defense Technology

Mimic Defense Technology