December | 2019

     Network Level
  • Changing host IP address
  • Random assignment of port numbers
  • Obfuscating  host information (OS types and versions )
Host Level
  • Changes to the host and OS level resources
  • Changes to naming and configurations
Application Level
  • Address Space Layout Randomization (ASLR)- random arrangement memory layout
  • Change in application types, version, routing through different hosts
  • Programming language change, compiling processes
     Parameter
     Description

Defense Measure

Coverage

Ratio Vulnerability Transformed / Vulnerability set exploited

Higher coverage

Randomness

Degree of uncertainty to the attack surface

Higher randomness

Timeliness

In time transformation before intrusive actions. Change frequency

In time transformation ahead of attack

Stability

Performance and availability of the system

Less/No impact

Coexistence

Variation MTD mechanisms, and ability to synergize with existing defense mechanism

Integration capability

About the Author

Related Articles