via Sécurité publique Canada
Army researchers developed a new machine learning-based framework to enhance the security of computer networks inside vehicles without undermining performance.
With the widespread prevalence of modern automobiles that entrust control to onboard computers, this research looks toward to a larger Army effort to invest in greater cybersecurity protection measures for its aerial and land platforms, especially heavy vehicles.
In collaboration with an international team of experts from Virginia Tech, the University of Queensland and Gwangju Institute of Science and Technology, researchers at the U.S. Army Combat Capabilities Development Command, known as DEVCOM, Army Research Laboratory devised a technique called DESOLATOR to help optimize a well-known cybersecurity strategy known as the moving target defense.
“The idea is that it’s hard to hit a moving target,” said Dr. Terrence Moore, Army mathematician. “If everything is static, the adversary can take their time looking at everything and choosing their targets. But if you shuffle the IP addresses fast enough, then the information assigned to the IP quickly becomes lost, and the adversary has to look for it again.”
DESOLATOR, which stands for deep reinforcement learning-based resource allocation and moving target defense deployment framework, helps the in-vehicle network identify the optimal IP shuffling frequency and bandwidth allocation to deliver effective, long-term moving target defense.
According to Army computer scientist and program lead Dr. Frederica Free-Nelson, achievement of the former keeps uncertainty high enough to thwart potential attackers without it becoming too costly to maintain, while attainment of the latter prevents slowdowns in critical areas of the network with high priority.
“This level of fortification of prioritized assets on a network is an integral component for any kind of network protection,” Nelson said. “The technology facilitates a lightweight protection whereby fewer resources are used for maximized protection. The utility of fewer resources to protect mission systems and connected devices in vehicles while maintaining the same quality of service is an added benefit.”
The research team used deep reinforcement learning to gradually shape the behavior of the algorithm based on various reward functions, such as exposure time and the number of dropped packets, to ensure that DESOLATOR took both security and efficiency into equal consideration.
“Existing legacy in-vehicle networks are very efficient, but they weren’t really designed with security in mind,” Moore said. “Nowadays, there’s a lot of research out there that looks solely at either enhancing performance or enhancing security. Looking at both performance and security is in itself a little rare, especially for in-vehicle networks.”
In addition, DESOLATOR is not limited to identifying the optimal IP shuffling frequency and bandwidth allocation. Since this approach exists as a machine learning-based framework, other researchers can modify the technique to pursue different goals within the problem space.
“This ability to retool the technology is very valuable not only for extending the research but also marrying the capability to other cyber capabilities for optimal cybersecurity protection,” Nelson said.
Researchers detail information about their approach in the research paper, DESOLATER: Deep Reinforcement Learning-Based Resource Allocation and Moving Target Defense Deployment Framework, in the peer-reviewed journal IEEE Access.
Original Article: New cybersecurity technique keeps hackers guessing
More from: United States Army Research Laboratory | Virginia Polytechnic Institute and State University | University of Queensland | Gwangju Institute of Science and Technology
The Latest Updates from Bing News & Google News
Go deeper with Bing News on:
Cybersecurity protection for vehicles
- Man sentenced to prison for driving car through Stop Asian Hate rally in 2021
A California man has been sentenced to a year in prison for driving through a crowded crosswalk of peaceful demonstrators while shouting racial slurs during a "Stop Asian Hate" rally in 2021, the ...
- NASA Must Improve Spacecraft Cybersecurity, GAO Report Finds
A GAO review of NASA projects found that, while some cybersecurity challenges have been addressed, many security policies and standards remain optional.
- Q&A: How Hackers Can Exploit Fleet Vehicles
Software-defined vehicles and insecure APIs and mobile services have opened new attack vectors for the bad guys to exploit, from cars to heavy-duty trucks. The threat is real, and it will have a huge ...
- NSWC Crane Awards LEEAP Hybrid Electric Project to Tessa Two
Naval Surface Warfare Center Crane Division selected Indianapolis, Indiana-based non-traditional organization Tessa Two to work on a prototype hybrid electric platform development.
- Best Identity Theft Protection of May 2024
Affiliate links for the products on this page are from partners that compensate us and terms apply to offers listed (see our advertiser disclosure with our list of partners for more details).
Go deeper with Google Headlines on:
Cybersecurity protection for vehicles
[google_news title=”” keyword=”cybersecurity protection for vehicles” num_posts=”5″ blurb_length=”0″ show_thumb=”left”]
Go deeper with Bing News on:
Network protection
- Ascension healthcare network investigates cyberattack
A major health care network is investigating after a cyberattack. Ascension said the breach is disrupting its clinical operations.
- Could a network approach help NATO deal with generative AI?
How should NATO respond to AI-generated media? There is one approach that NATO should consider more broadly: a “network approach,” a term coined by Tyler McBrian in a paper for the Innovations for ...
- Ascension dealing with network interruption due to likely cyberattack
AscenionOn Wednesday, May 8, we detected unusual activity on select technology network systems, which we now believe is due to a cyber secur ...
- Corero Network Security and SEMPRE Launch Partnership To Secure the Availability of Critical Infrastructure
Corero Network Security (LON: CNS) (OTCQB: DDOSF), the distributed denial of service (DDoS) protection specialists, announced a partnership with SEMPRE, a technology company dedicated to securing ...
- Network Security Market to Surpass USD 61.96 billion by 2031 | SkyQuest Technology
Westford, USA, May 09, 2024 (GLOBE NEWSWIRE) -- SkyQuest projects that Global Network Security Market will attain a value of USD 61.96 billion by 2031, with a CAGR of 13.20% over the forecast period ...
Go deeper with Google Headlines on:
Network protection
[google_news title=”” keyword=”network protection” num_posts=”5″ blurb_length=”0″ show_thumb=”left”]