一种防范物隔攻击的拟态防御模型

ir-gap attacks and mimic defense are two emerging techniques in the field of network attack and defense, respectively. However, direct confrontation between them has not yet appeared in the real world. Who will be the winner, if air-gap attacks encounter mimic defense? To this end, a preliminary analysis is conducted for exploring the possible the strategy space of game according to the core principles of air-gap attacks and mimic defense. On this basis, an architecture model is proposed, which combines some detectors for air-gap attacks and mimic defense devices. First, a dynamic heterogeneous redundancy structure is employed to be on guard against malicious software of air-gap attacks. Second, some detectors for air-gap attacks are used to detect some signal sent by air-gap attackers\' transmitter. Third, the proposed architecture model is obtained by organizing the dynamic heterogenIf Air-Gap Attacks Encounter Mimic Defenseeous redundancy structure and detectors for air-gap attacks with some logical relationship. The simulated experimental results preliminarily confirm the ability of the new model.