Technical Reports

HPL-2012-164

Game Theoretic Approaches to Attack Surface Shifting

Manadhata, Pratyusa Kumar
HP Laboratories

HPL-2012-164

Keyword(s): moving target defense; attack surface; attack surface shift

Abstract: A software system's attack surface is the set of ways in which the system can be attacked. In our prior work, we introduced an attack surface measurement and reduction method to mitigate a software system*s security risk [5, 6]. In this paper, we explore the use of attack surface shifting in the moving target defense approach. We formalize the notion of shifting the attack surface and introduce a method to quantify the shift.We cast the moving target defense approach as a security-usability trade-off and introduce a two- player stochastic game model to determine an optimal moving target defense strategy. A system's defender can use our game theoretic approach to optimally shift and reduce the system*s attack surface.

12 Pages

External Posting Date: July 21, 2012 [Abstract Only]. Approved for External Publication - External Copyright Consideration
Internal Posting Date: July 21, 2012 [Fulltext]

Back to Index