Performance and security analysis of flexible random virtual internet protocol multiplexing on a virtualised network.
Thesis DisciplineComputer Science
Degree GrantorUniversity of Canterbury
Degree NameMaster of Science
With the interconnection of services and customers, network attacks are now capable of large amounts of damage. Defending against these attacks is difficult, especially with an asymmetric disadvantage between defender and attacker. Flexible Random Virtual internet protocol Multiplexing (FRVM) is a moving target defence technique that protects against reconnaissance and access with address mutation and multiplexing. By deploying FRVM on a Mininet network, this thesis demonstrated its security and performance trade-off. Address mutation and multiplexing can largely increase the duration of network scans and obfuscate the results. Additionally, address multiplexing is inexpensive in terms of performance. These could drive future research to include address mutation and multiplexing. Finally, the methodology and results could fuel future research into FRVM.