Dynamic and moving target defenses are generally characterized by their ability to modify their own state, or the state of the protected target. As such, the evolution of these kinds of defenses require specialized experiments that can capture their behavior and effectiveness through time, as well as their broader impacts in the network. While specialized experiments can be constructed to evaluate specific defenses, there is a need for a general approach that will facilitate such tasks. In this work we introduce VINE, a high-fidelity cyber experimentation environment designed for the study and evaluation of dynamic and moving target defenses. VINE provides a common infrastructure supporting the construction, deployment, execution, and monitoring of complex mission-driven network scenarios that are fully instrumented. The tool was designed to be scalable, extensible, and highly configurable to enable the study of cyber defense strategies under dynamic background traffic and attack conditions, making VINE well-suited for the study of adaptive and moving target defenses. In this paper we introduce the VINE approach, the VINE architecture for MTD experimentation, and provide an illustrative example of the framework in action.
[1]
Petter Ögren,et al.
Increasing Modularity of UAV Control Systems using Computer Game Behavior Trees
,
2012
.
[2]
Evan Stoner,et al.
A Foundation for Cyber Experimentation
,
2015
.
[3]
Jeffrey M. Bradshaw,et al.
MTC2: A command and control framework for moving target defense and cyber resilience
,
2013,
2013 6th International Symposium on Resilient Control Systems (ISRCS).
[4]
Terry V. Benzel,et al.
The DETER project: Advancing the science of cyber security experimentation and test
,
2010,
2010 IEEE International Conference on Technologies for Homeland Security (HST).
[5]
Jeffrey M. Bradshaw,et al.
Command and Control Requirements for Moving-Target Defense
,
2012,
IEEE Intelligent Systems.