A Legacy Infrastructure-based Mechanism for Moving Target Defense

• Published in: 2021 IEEE 3rd Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability (ECBIOS) pp. 80 - 83
• Main Authors: Huang, Che-Wei, Liu, I-Hsien, Li, Jung-Shian, Wu, Chi-Che, Li, Chu-Fen, Liu, Chuan-Gang
• Format: Conference Proceeding
• Language: English
• Published: IEEE 28.05.2021
• Subjects: DHCP; ICS; Integrated circuits; IP networks; IP-Hopping; Medical services; Moving Target Defense; Performance evaluation; Protocols; Servers; Synchronization
• DOI: 10.1109/ECBIOS51820.2021.9510261

With the advancement of network technology, more electronic devices have begun to connect to the Internet. The era of IoE (Internet of Everything) is coming. However, the number of serious incidents of cyberattacks on important facilities has gradually increased at the same time. Security becomes an important issue when setting up plenty of network devices in an environment. Thus, we propose an innovative mechanism of the Moving Target Defense (MTD) to solve the problems happening to other MTD mechanisms in the past. This method applies Dynamic Host Configuration Protocol (DHCP) to dynamically change the IPv4 address of information equipment in the medical environment. In other words, each of the nodes performs IP-Hopping and effectively avoids malicious attacks. Communication between devices relies on DNS lookup. The mechanism avoids problems such as time synchronization and IP conflict. Also, it greatly reduces the costs of large-scale deployment. All of these problems are encountered by other MTD mechanisms in the past. Not only can the mechanism be applied to the medical and information equipment, it can also be applied to various devices connected to the Internet, including Industrial Control System (ICS). The mechanism is implemented in existing technologies and prevents other problems, which makes it easy to build a system.