POSTER: Expanding a Programmable CPS Testbed for Network Attack Analysis

We analyze the distributed network attack-defense game scenarios, and we find that attackers and defenders have different information acquisition abilities since the ownership of the target system. Correspondingly, they will have different initiative and reaction in the game. Based on that, we propose a novel dynamic game method for distributed network attack-defense game. The method takes advantage of defenders’ information superiority and attackers’ imitation behaviors and induces attackers’ reaction evolutionary process in the game to gain more defense payoffs. Experiments show that our method can achieve relatively more average defense payoffs than previous work.

Download Full-text

Defeat the Network Attack by using Active Networks approach

2006 2nd International Conference on Information & Communication Technologies ◽

10.1109/ictta.2006.1684359 ◽

2006 ◽

Author(s):

A. Eddaoui ◽

A. Mezrioui

Keyword(s):

Active Networks ◽

Network Attack

Download Full-text

An effective recognition method for network attack

Optik ◽

10.1016/j.ijleo.2013.02.036 ◽

2013 ◽

Vol 124 (21) ◽

pp. 4823-4826 ◽

Cited By ~ 4

Author(s):

Ying Liu ◽

Wen-Xiang Gu

Keyword(s):

Recognition Method ◽

Network Attack

Download Full-text

A Network Attack Blocking Scheme based on Threat Intelligence

2021 6th International Conference on Intelligent Computing and Signal Processing (ICSP) ◽

10.1109/icsp51882.2021.9408916 ◽

2021 ◽

Author(s):

Kun Li ◽

Rui Wang ◽

Haiwei Li ◽

Yan Hao

Keyword(s):

Network Attack ◽

Threat Intelligence

Download Full-text

Deep learning for detecting logic-flaw-exploiting network attacks: An end-to-end approach

Journal of Computer Security ◽

10.3233/jcs-210101 ◽

2021 ◽

pp. 1-30

Author(s):

Qingtian Zou ◽

Anoop Singhal ◽

Xiaoyan Sun ◽

Peng Liu

Keyword(s):

Deep Learning ◽

Attack Detection ◽

Network Data ◽

Learning Models ◽

Real World Data ◽

Network Attacks ◽

Network Attack ◽

Public Network ◽

Network Intrusion ◽

End To End

Network attacks have become a major security concern for organizations worldwide. A category of network attacks that exploit the logic (security) flaws of a few widely-deployed authentication protocols has been commonly observed in recent years. Such logic-flaw-exploiting network attacks often do not have distinguishing signatures, and can thus easily evade the typical signature-based network intrusion detection systems. Recently, researchers have applied neural networks to detect network attacks with network logs. However, public network data sets have major drawbacks such as limited data sample variations and unbalanced data with respect to malicious and benign samples. In this paper, we present a new end-to-end approach based on protocol fuzzing to automatically generate high-quality network data, on which deep learning models can be trained for network attack detection. Our findings show that protocol fuzzing can generate data samples that cover real-world data, and deep learning models trained with fuzzed data can successfully detect the logic-flaw-exploiting network attacks.

Download Full-text