Moving Target Defense (MTD) is a defensive strategy to thwart adversaries by continuously shifting the attack surface. The MTD techniques can be applied to the cloud computing to make the cloud more unpredictable, hence more difficult to exploit. There are many MTD techniques proposed, and various metrics are used to measure their effectiveness. However, it is difficult to assess when MTD techniques are used in combinations. In this paper, we propose a formal security assessment approach to evaluate the effectiveness of combined MTD techniques using security modeling. We use security metrics, such as System Risk and Reliability, to evaluate those MTD techniques. In particular, we investigate how the security of the cloud change when two categories of MTD techniques, Shuffle and Redundancy, are used in combinations. We also explore approaches to find important components in the cloud using Network Centrality Measures and the size of the cloud and evaluate the trade-off between security and dependability in terms of the system Risk and Reliability, respectively. We show that combining the shuffle and redundancy MTD techniques could enhance the security of the cloud with the trade-off between the Risk and Reliability, which can be managed using the proposed security assessment approach.
Read full abstract