TY - GEN
T1 - Replication and diversity for survivability in cyberspace
T2 - 8th International Conference on Information Warfare and Security, ICIW 2013
AU - Kamhoua, Charles
AU - Kwiat, Kevin
AU - Chatterjee, Mainak
AU - Park, Joon
AU - Hurley, Patrick
PY - 2013
Y1 - 2013
N2 - An effective defense-in-depth avoids a large percentage of threats and defeats those threats that turn into attacks. When an attack evades detection, it may disrupt the systems and networks, and then the need for survivability is more critical. In this context, mission assurance seeks to ensure that critical mission essential functions (MEFs) survive and fight through the attacks against the underlying cyber infrastructure. Survivability represents the quantified ability of a system, subsystem, equipment, process, or procedure to function continually during and after a disturbance. US Air Force systems carry varying survivability requirements depending on MEF's criticality and protection conditions. Almost invariably, however, replication of a subsystem, equipment, process, or procedure is necessary to meet a system's survivability requirements. Therefore, the degree of replication within a system can be paramount for MEF's survival. Moreover, diversity will prevent the same fault or attack from damaging all the replicas so that they can continue the mission. This research shows that the more dangerous vulnerabilities (that affect more replicas) in a system are sometimes less likely to be exploited. The attacker may be better off when exploiting small vulnerabilities because they will be less protected by the defender. In fact, diversity always gives extra challenges to attackers. This work uses the mathematical framework of game theory to show the significance of replica diversity for mission survival in cyberspace.
AB - An effective defense-in-depth avoids a large percentage of threats and defeats those threats that turn into attacks. When an attack evades detection, it may disrupt the systems and networks, and then the need for survivability is more critical. In this context, mission assurance seeks to ensure that critical mission essential functions (MEFs) survive and fight through the attacks against the underlying cyber infrastructure. Survivability represents the quantified ability of a system, subsystem, equipment, process, or procedure to function continually during and after a disturbance. US Air Force systems carry varying survivability requirements depending on MEF's criticality and protection conditions. Almost invariably, however, replication of a subsystem, equipment, process, or procedure is necessary to meet a system's survivability requirements. Therefore, the degree of replication within a system can be paramount for MEF's survival. Moreover, diversity will prevent the same fault or attack from damaging all the replicas so that they can continue the mission. This research shows that the more dangerous vulnerabilities (that affect more replicas) in a system are sometimes less likely to be exploited. The attacker may be better off when exploiting small vulnerabilities because they will be less protected by the defender. In fact, diversity always gives extra challenges to attackers. This work uses the mathematical framework of game theory to show the significance of replica diversity for mission survival in cyberspace.
KW - Cybersecurity
KW - Diversity
KW - Game theory
KW - Replication
KW - Survivability
UR - http://www.scopus.com/inward/record.url?scp=84893146191&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84893146191&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:84893146191
SN - 9781627480178
T3 - 8th International Conference on Information Warfare and Security, ICIW 2013
SP - 116
EP - 124
BT - 8th International Conference on Information Warfare and Security 2013
PB - Academic Conferences Ltd
Y2 - 25 March 2013 through 26 March 2013
ER -