Portal de Programas de Pós-Graduação (UFPI)

SIGAA - Sistema Integrado de Gestão de Atividades Acadêmicas

CPPGCC/CCN COORDENACAO DO PROGRAMA DE POS-GRADUACAO EM CIENCIA DA COMPUTACAO/CCN UNIVERSIDADE FEDERAL DO PIAUÍ Telefone/Ramal: (86) 2222-5838 http://www.posgraduacao.ufpi.br//ppgcc

Notícias

Banca de DEFESA: LUCAS VINÍCIUS SILVA DOS SANTOS

Uma banca de DEFESA de MESTRADO foi cadastrada pelo programa.
DISCENTE: LUCAS VINÍCIUS SILVA DOS SANTOS
DATA: 27/08/2025
HORA: 14:00
LOCAL: Plataforma Google Meet
TÍTULO: Hybrid and Decoy Moving Target Defense in Cloud Computing: A Performance Modeling Approach
PALAVRAS-CHAVES: moving target defense, IDS, migration, cybersecurity, performance, Petri Nets
PÁGINAS: 80
GRANDE ÁREA: Ciências Exatas e da Terra
ÁREA: Ciência da Computação
SUBÁREA: Sistemas de Computação
ESPECIALIDADE: Software Básico
RESUMO:

Information security faces increasingly complex challenges, requiring innovative strategies to enhance system resilience against attacks. The concept of Moving Target Defense (MTD) emerges as a promising approach, as it complicates the identification and exploitation of vulnerabilities by dynamically modifying system configurations. Among the possible strategies, virtual machine migration and IP address relocation stand out, as well as the use of decoy servers that act as bait to mislead attackers and delay their progress. This study proposes a comparative evaluation of two distinct MTD methodologies, both modeled using Petri nets. The first approach relies on migration as a defensive strategy, considering three activation policies: time-based, event-based, and a hybrid approach that combines both. To strengthen the response to attacks, an intrusion detection system (IDS) was incorporated to identify malicious activities and trigger system migration as needed. The second approach analyzes the impact of using decoy servers combined with dynamic IP address migration to hinder the mapping of real servers and increase attacker uncertainty regarding the system’s topology. Simulation results indicate that the effectiveness of event-based detection policies heavily depends on the accuracy of the IDS, proving to be more advantageous when its precision exceeds 50%. Additionally, the hybrid approach demonstrated the highest efficiency in delaying attacker progress, balancing security and system performance. In the context of decoy servers, experiments revealed that introducing a higher number of decoys significantly increases the time required for a successful intrusion, extending it from 8 to up to 19 days. The interaction between attack probability and the number of decoys showed a direct impact on the rate of IP address changes, reinforcing the effectiveness of this strategy in enhancing system resilience. Thus, this study contributes to the understanding of the applicability of different MTD strategies, providing analysis into how migration policies and decoy server usage can be optimized to improve the security of computing infrastructures against cyber threats.

MEMBROS DA BANCA:
Presidente - 1042211 - FRANCISCO AIRTON PEREIRA DA SILVA
Interno - 2413428 - GLAUBER DIAS GONCALVES
Interno - 1732813 - RAYNER GOMES SOUSA
Externo à Instituição - 041.***.***-80 - ERMESON CARNEIRO DE ANDRADE - UFRPE
Externo à Instituição - 076.***.***-10 - MATHEUS D''EÇA TORQUATO DE MELO - IFAL

Notícia cadastrada em: 04/08/2025 13:43

SIGAA | Superintendência de Tecnologia da Informação - STI/UFPI - (86) 3215-1124 | © UFRN | sigjb06.ufpi.br.instancia1 31/08/2025 11:31