Show simple item record

dc.contributor.authorMorrell, Christopher Franken_US
dc.date.accessioned2017-10-26T06:00:29Z
dc.date.available2017-10-26T06:00:29Z
dc.date.issued2016-05-03en_US
dc.identifier.othervt_gsexam:7326en_US
dc.identifier.urihttp://hdl.handle.net/10919/79791
dc.description.abstractThe amount of data that is shared on the Internet is growing at an alarming rate. Current estimates state that approximately 2.5 exabytes of data were generated every day in 2012. This rate is only growing as people continue to increase their on-line presence. As the amount of data grows, so too do the number of people who are attempting to gain access to the data. Attackers try many methods to gain access to information, including a number of attacks that occur at the network layer. A network-based moving target defense is a technique that obfuscates the location of a machine on the Internet by arbitrarily changing its IP address periodically. MT6D is one of these techniques that leverages the size of the IPv6 address space to make it statistically impossible for an attacker to find a specific target machine. MT6D was designed with a number of limitations that include manually generated static configurations and support for only peer to peer networks. This work presents extensions to MT6D that provide dynamically generated configurations, a secure and dynamic means of exchanging configurations, and with these new features, an ability to function as a server supporting a large number of clients. This work makes three primary contributions to the field of network-based moving target defense systems. First, it provides a means to exchange arbitrary information in a way that provides network anonymity, authentication, and security. Second, it demonstrates a technique that gives MT6D the capability to exchange configuration information by only sharing public keys. Finally, it introduces a session establishment protocol that clients can use to establish concurrent connections with an MT6D server.en_US
dc.format.mediumETDen_US
dc.publisherVirginia Techen_US
dc.rightsThis Item is protected by copyright and/or related rights. Some uses of this Item may be deemed fair and permitted by law even without permission from the rights holder(s), or the rights holder(s) may have licensed the work for use under certain conditions. For other uses you need to obtain permission from the rights holder(s).en_US
dc.subjectIPv6en_US
dc.subjectSecurityen_US
dc.subjectPrivacyen_US
dc.subjectMoving Target Defenseen_US
dc.subjectClient Server Networken_US
dc.titleImproving the Security, Privacy, and Anonymity of a Client-Server Network through the Application of a Moving Target Defenseen_US
dc.typeDissertationen_US
dc.contributor.departmentElectrical and ComputerEngineeringen_US
dc.description.degreePh. D.en_US
thesis.degree.namePh. D.en_US
thesis.degree.leveldoctoralen_US
thesis.degree.grantorVirginia Polytechnic Institute and State Universityen_US
thesis.degree.disciplineComputer Engineeringen_US
dc.contributor.committeechairTront, Joseph G.en_US
dc.contributor.committeememberMarchany, Randolph C.en_US
dc.contributor.committeememberYao, Danfengen_US
dc.contributor.committeememberClancy, Thomas C.en_US
dc.contributor.committeememberMidkiff, Scott F.en_US


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record