A network deception defense mechanism based on virtual topology generation

Binghui Wang; Bin Lu

doi:10.1117/12.2679362

16 June 2023 A network deception defense mechanism based on virtual topology generation

Binghui Wang, Bin Lu

Proceedings Volume 12702, International Conference on Intelligent Systems, Communications, and Computer Networks (ISCCN 2023); 127022P (2023) https://doi.org/10.1117/12.2679362
Event: International Conference on Intelligent Systems, Communications, and Computer Networks (ISCCN 2023), 2023, Changsha, China

Abstract

To address the problem that traditional network defense techniques are difficult to cope with scanning attacks launched by internal attackers, this paper proposes a Virtual Network Topology Deception Defense mechanism(VNTDD)based on the idea of deception defense. In order to solve the problem of lack of randomness and security of virtual network topology, we divide the virtual network topology into three categories: forwarding nodes, real nodes and virtual nodes, and analyze their deployment locations and numbers respectively to generate a random virtual network topology, and enables the deployment of virtual network topology on the underlying real network through traffic control mechanisms. Finally, through experimental analysis, the VNTDD deception defense mechanism proposed in this paper can effectively prolong the scanning process of the intranet by internal attackers.

Citation Download Citation

Binghui Wang and Bin Lu "A network deception defense mechanism based on virtual topology generation", Proc. SPIE 12702, International Conference on Intelligent Systems, Communications, and Computer Networks (ISCCN 2023), 127022P (16 June 2023); https://doi.org/10.1117/12.2679362

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
7 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Defense and security

Network security

RELATED CONTENT

Coalition Warfare Program (CWP) secure policy controlled information query...
Proceedings of SPIE (May 22 2013)

Group key dynamic management method for wireless sensor network
Proceedings of SPIE (May 13 2022)

Long lasting effects of awareness training methods on reducing overall...
Proceedings of SPIE (May 07 2019)

Big data, little security Addressing security issues in your...
Proceedings of SPIE (May 03 2017)

A multiple events recognition scheme based on improved feature vectors...
Proceedings of SPIE (March 12 2020)

Study limitations of DoS attackers due to computer resources
Proceedings of SPIE (October 20 2023)

Net-centric communities for the tactical environment
Proceedings of SPIE (April 03 2008)

Subscribe to Digital Library

Receive Erratum Email Alert

Keywords/Phrases

Search In:

Publication Years