Conventional network
security mechanisms are incompetent to
overcome these challenges, since they are built
on a static network configuration that facilitates
attackers in finding the weaknesses of a network.
In this article, we conceive a novel conceptual
network security mechanism, the evolving
defense mechanism (EDM), to resolve current
and future security problems. EDM is based on
a bio-inspired idea of network configuration
variations. According to the security requirements
of the system, the user, and the network
security state, EDM selects an efficient network
configuration variation strategy to prevent corresponding
security threats. Combined with SDN
implementation, EDM resolves security problems
from a new angle and is capable of evolving
with new network security technology. We sketch
a way to implement EDM and present its reference
framework, which serves as an ecosystem
and coexisting environment for various kinds of
network configuration variations. The proposed
mechanism avoids the deficiency of conventional
mechanisms and has potential to cope with
emerging security threats.
Conventional networksecurity mechanisms are incompetent toovercome these challenges, since they are builton a static network configuration that facilitatesattackers in finding the weaknesses of a network.In this article, we conceive a novel conceptualnetwork security mechanism, the evolvingdefense mechanism (EDM), to resolve currentand future security problems. EDM is based ona bio-inspired idea of network configurationvariations. According to the security requirementsof the system, the user, and the networksecurity state, EDM selects an efficient networkconfiguration variation strategy to prevent correspondingsecurity threats. Combined with SDNimplementation, EDM resolves security problemsfrom a new angle and is capable of evolvingwith new network security technology. We sketcha way to implement EDM and present its referenceframework, which serves as an ecosystemand coexisting environment for various kinds ofnetwork configuration variations. The proposedmechanism avoids the deficiency of conventionalmechanisms and has potential to cope withemerging security threats.
การแปล กรุณารอสักครู่..