survey of cyber moving targets second edition
play

Survey of Cyber Moving Targets Second Edition Authors: B.C. Ward - PowerPoint PPT Presentation

Apr 05, 2024 •184 likes •562 views

Survey of Cyber Moving Targets Second Edition Authors: B.C. Ward S.R. Gomez R.W. Skowyra D. Bigelow J.N. Martin J.W. Landry H. Okhravi Presenter: Jinghui Liao Outline Cyber Kill Chain Attack technique Moving-targets technique

  1. Survey of Cyber Moving Targets Second Edition Authors: B.C. Ward S.R. Gomez R.W. Skowyra D. Bigelow J.N. Martin J.W. Landry H. Okhravi Presenter: Jinghui Liao

  2. Outline ´ Cyber Kill Chain ´ Attack technique ´ Moving-targets technique ´ Weakness

  3. Cyber Kill Chain ´ Reconnaissance ´ Access ´ Exploit Development ´ Attack Launch ´ Persistence

  4. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  5. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  6. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Leakage of cryptographic keys from memory(WannaCry) ´ Side-channel attacks(spectre meltdown)

  7. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  8. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Exhaust or manipulate shared resources ´ Denial-of-service using CPU saturation

  9. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  10. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  11. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ buffer overflow ´ script injection ´ SQL injection

  12. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  13. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Timing ´ Ordering ´ Arguments ´ Return-oriented programming (ROP)

  14. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  15. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Fake identity ´ Man-in-the-middle ´ Phishing

  16. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  17. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Compromise authentication process ´ Cross-site scripting

  18. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  19. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  20. ATTACK TECHNIQUES ´ Data Leakage Attacks ´ Resource Attacks ´ Injection ´ Code Injection ´ Control Injection ´ Spoofing ´ Exploitation of Authentication ´ Exploitation of Privilege/Trust ´ Scanning ´ Supply Chain/Physical Attacks

  21. https://www.bloomberg.com/news/features/2018- 10-04/the-big-hack-how-china-used-a-tiny-chip-to- infiltrate-america-s-top-companies

  22. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  23. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  24. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Format ´ Syntax ´ Encoding ´ Encryption ´ Representation

  25. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  26. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Instructions ´ Order ´ Grouping ´ Format

  27. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  28. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  29. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Code ´ Libraries ´ Stack/heap ´ Functions

  30. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  31. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Interface presented by the operating system

  32. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  33. Moving-Targets ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ OS version ´ CPU architecture ´ OS instance ´ Platform data format

  34. Moving-Targets ´ Any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system less homogeneous, static, or deterministic ´ Dynamic Data ´ Dynamic Software ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks

  35. Moving-Targets ´ Dynamic Runtime Environment ´ Address Space Randomization ´ Instruction Set Randomization ´ Dynamic Platforms ´ Dynamic Networks ´ Protocols ´ Addresses

  36. WEAKNESSES ´ Overcome Movement ´ Predict Movement ´ Limit Movement ´ Disable Movement

  37. Thank you!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Survey of Cyber Moving Targets Presented By Sharani Sankaran Moving Target Defense A cyber

Survey of Cyber Moving Targets Presented By Sharani Sankaran Moving Target Defense A cyber

Survey of Cyber Moving Targets Presented By Sharani Sankaran Moving Target Defense A cyber moving target technique refers to any technique that attempts to defend a system and increase the complexity of cyber attacks by making the system

728 views • 27 slides
Cyber Moving Targets Yashar Dehkan Asl Introduction An overview of different cyber moving target

Cyber Moving Targets Yashar Dehkan Asl Introduction An overview of different cyber moving target

Cyber Moving Targets Yashar Dehkan Asl Introduction An overview of different cyber moving target techniques, their threat models, and their technical details. Cyber moving target technique: Defend a system Increase the complexity of cyber

442 views • 40 slides
Estimation of moving targets located behind reinforced concrete wall using moving sensor arrays

Estimation of moving targets located behind reinforced concrete wall using moving sensor arrays

Estimation of moving targets located behind reinforced concrete wall using moving sensor arrays Marija M. Nikoli 1 , Arye Nehorai 2 , and Antonije R. Djordjevi 1 1 University of Belgrade, Serbia 2 Washington University in St. Louis, USA

213 views • 20 slides
Small Arms Survey 2012 New York, 1-5 June 2015 Small arms, new technologies, and MGE2 Moving

Small Arms Survey 2012 New York, 1-5 June 2015 Small arms, new technologies, and MGE2 Moving

Second Open-ended Meeting of Governmental Experts under the UNPoA Small Arms Survey 2012 New York, 1-5 June 2015 Small arms, new technologies, and MGE2 Moving Targets Glenn McDonald MGE2 (June 2015) SMALL ARMS SURVEY Second Open-ended

547 views • 26 slides
Cyber security for automotive Moving Britain Ahead March 17 OFFICIAL Rail Cyber Security 1

Cyber security for automotive Moving Britain Ahead March 17 OFFICIAL Rail Cyber Security 1

Cyber security for automotive Moving Britain Ahead March 17 OFFICIAL Rail Cyber Security 1 Challenges for the automotive industry Cultural: Cyber security is new to the industry They need to get the right structures and

377 views • 5 slides
Caveats Themes are moving targets FC of 2008 is not identical/coincidental but co

Caveats Themes are moving targets FC of 2008 is not identical/coincidental but co

Caveats Themes are moving targets FC of 2008 is not identical/coincidental but co relational to Euro crisis Causes of the Euro crisis vary between the countries Effects, for the most part, early to measure of steps taken to

551 views • 40 slides
LuckyCat Organized Cyber-Crime (tracing back to China) Targets in India, Japan and Tibet.

LuckyCat Organized Cyber-Crime (tracing back to China) Targets in India, Japan and Tibet.

LuckyCat Organized Cyber-Crime (tracing back to China) Targets in India, Japan and Tibet. Research facilities belonging to Military, Universities and Governments Areas of aerospace, energy and astronautics. The gang behind

576 views • 22 slides
CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview 1. What is at risk? 2. Global industry trends 3. BDO/AusCERT survey 4. Recent cyber case studies 5. Cyber risk mitigation strategies Page

481 views • 35 slides
SLO Growth Targets How to determine & set growth targets Todays Learning Targets I CAN

SLO Growth Targets How to determine & set growth targets Todays Learning Targets I CAN

SLO Growth Targets How to determine & set growth targets Todays Learning Targets I CAN evaluate pre-assessment data & group my students by score ranges. I CAN set growth targets that are rigorous yet attainable. I CAN complete

927 views • 26 slides
CSE 311 Foundations of 4.3 7 th Edition Computing I 3.5, 3.6 6 th Edition 2.5, 2.6 up

CSE 311 Foundations of 4.3 7 th Edition Computing I 3.5, 3.6 6 th Edition 2.5, 2.6 up

Announcements Reading assignments Today and Monday: CSE 311 Foundations of 4.3 7 th Edition Computing I 3.5, 3.6 6 th Edition 2.5, 2.6 up to p. 191 5 th Edition Lecture 11 Wednesday Modular Exponentiation and Primes

345 views • 5 slides
Oxfordshire Online Pupil Survey 2020 - Home Edition Health and Wellbeing in Oxfordshire School

Oxfordshire Online Pupil Survey 2020 - Home Edition Health and Wellbeing in Oxfordshire School

Oxfordshire Online Pupil Survey 2020 - Home Edition Health and Wellbeing in Oxfordshire School Pupils Home Survey: May June 2020 Oxfordshire Online Pupil Survey 2020 - Home Edition This survey Oxfordshire Online Pupil Survey 2020 Home

241 views • 6 slides
Understanding the Uncertainty in 1D Unidirectional Moving Target Selection Jin Huang , Feng Tian,

Understanding the Uncertainty in 1D Unidirectional Moving Target Selection Jin Huang , Feng Tian,

Understanding the Uncertainty in 1D Unidirectional Moving Target Selection Jin Huang , Feng Tian, Xiangmin Fan, Xiaolong(Luke) Zhang, Shumin Zhai CHI 2018 April 26 th , 2018 INTRODUCTION MOVING TARGETS EVERYWHERE Screenshot of StarCraft II

430 views • 39 slides
Securing Cyber-Physical Systems: moving beyond fear Stefano Zanero, PhD Associate Professor,

Securing Cyber-Physical Systems: moving beyond fear Stefano Zanero, PhD Associate Professor,

Securing Cyber-Physical Systems: moving beyond fear Stefano Zanero, PhD Associate Professor, Politecnico di Milano Welcome to the security circus! Stefano Zanero We all like to see the attractions Stefano Zanero We all like to see the

922 views • 46 slides
CSE 311 Foundations of 12.1 12.3 7 th Edition Computing I 11.1 11.3 6 th Edition

CSE 311 Foundations of 12.1 12.3 7 th Edition Computing I 11.1 11.3 6 th Edition

Announcements Reading assignments Boolean Algebra CSE 311 Foundations of 12.1 12.3 7 th Edition Computing I 11.1 11.3 6 th Edition 10.1 10.3 5 th Edition Lecture 4, Boolean Logic Predicates and Quantifiers

360 views • 5 slides
WORLDWIDE CYBER-ATTACKS: THEIR IMPACT ON THE INTERNATIONAL HEALTH SERVICES AND THEIR ANSWER IN

WORLDWIDE CYBER-ATTACKS: THEIR IMPACT ON THE INTERNATIONAL HEALTH SERVICES AND THEIR ANSWER IN

MOL2NET 2017, International Conference on Multidisciplinary Sciences, 3rd edition. Section 08: LAWSCI-01: Wokshop on Challenges in Law, Technology, Life, and Social Sciences. 25 30 July, 2017. Bilbao, Spain. WORLDWIDE CYBER-ATTACKS: THEIR

78 views • 5 slides
Thoughts from the Shire Geoff Wright A standard for moving surveys between survey One Ring to

Thoughts from the Shire Geoff Wright A standard for moving surveys between survey One Ring to

Thoughts from the Shire Geoff Wright A standard for moving surveys between survey One Ring to rule them all, One Ring to find them, packages on various hardware and software platforms One Ring to bring them all and in the darkness bind them

229 views • 10 slides
Using Fault Injection to Turn Data Transfers into Arbitrary Execution Cristofaro Mune Niek

Using Fault Injection to Turn Data Transfers into Arbitrary Execution Cristofaro Mune Niek

Using Fault Injection to Turn Data Transfers into Arbitrary Execution Cristofaro Mune Niek Timmers c.mune@pulse-sec.com niek@twentytwosecurity.com @pulsoid @tieknimmers Todays agenda Introduction Fault Injection basics Fault

1.05k views • 56 slides
Reaction Injection Molding (RIM)- Low Quantity Injection Molding for the Life Sciences Industry

Reaction Injection Molding (RIM)- Low Quantity Injection Molding for the Life Sciences Industry

Reaction Injection Molding (RIM)- Low Quantity Injection Molding for the Life Sciences Industry Presented by: Ken Schweitz, President and Doug Culbertson, VP Business Development of Premold Corp Section I. Advantages of RIM Economical

441 views • 29 slides
INJECTING SECURITY INTO WEB APPS AT RUNTIME AJIN ABRAHAM SECURITY ENGINEER #WHOAMI

INJECTING SECURITY INTO WEB APPS AT RUNTIME AJIN ABRAHAM SECURITY ENGINEER #WHOAMI

INJECTING SECURITY INTO WEB APPS AT RUNTIME AJIN ABRAHAM SECURITY ENGINEER #WHOAMI Security Engineering @ Research on Runtime Application Self Defence Authored MobSF, Xenotix and NodeJSScan Teach Security: opsecx.com

906 views • 55 slides
Siva Hari Timothy Tsai, Mark Stephenson, Stephen W. Keckler, Joel Emer MOTIVATION Automotive

Siva Hari Timothy Tsai, Mark Stephenson, Stephen W. Keckler, Joel Emer MOTIVATION Automotive

Siva Hari Timothy Tsai, Mark Stephenson, Stephen W. Keckler, Joel Emer MOTIVATION Automotive and HPC systems need high resilience Need to evaluate resilience of applications Silent Data Corruption (SDC), Detected Unrecoverable Error (DUE)

368 views • 26 slides
Using Partial Taint Tracking To Protect Against Injection Attacks Ioannis Papagiannis , Matteo

Using Partial Taint Tracking To Protect Against Injection Attacks Ioannis Papagiannis , Matteo

PHP Aspis: Using Partial Taint Tracking To Protect Against Injection Attacks Ioannis Papagiannis , Matteo Migliavacca, Peter Pietzuch Department of Computing, Imperial College London USENIX WebApps 2011 Portland, OR, USA Injection

763 views • 47 slides
Robust Probabilistic Fake Packet Injection for Receiver-Location Privacy Ruben Rios 1 , Jorge

Robust Probabilistic Fake Packet Injection for Receiver-Location Privacy Ruben Rios 1 , Jorge

Robust Probabilistic Fake Packet Injection for Receiver-Location Privacy Ruben Rios 1 , Jorge Cuellar 2 , Javier Lopez 1 1 NICS Lab University of Mlaga 2 Siemens AG, Munich E SORI CS 2012 10-14 Se pt. Pisa (I ta ly)

432 views • 25 slides
A1 (Part 1): Injection Command and Code injection A1 Injection Tricking an application

A1 (Part 1): Injection Command and Code injection A1 Injection Tricking an application

A1 (Part 1): Injection Command and Code injection A1 Injection Tricking an application into executing commands or code embedded in data Data and code mixing! Often injected into interpreters SQL, PHP, Python, JavaScript, LDAP,

377 views • 14 slides
Morales 1 , 2 Hetor Garia Brue 2 Redaelli 2 tino 2 Ro derik , Sefano , Gianlua V alen

Morales 1 , 2 Hetor Garia Brue 2 Redaelli 2 tino 2 Ro derik , Sefano , Gianlua V alen

MD1388: A tiv e Halo Con trol using narro w band exitation at injetion Morales 1 , 2 Hetor Garia Brue 2 Redaelli 2 tino 2 Ro derik , Sefano , Gianlua V alen , h 2 agner 2 Xu 2 Daniel V alu , Jos hk a W , C.

190 views • 7 slides

More recommend