The current cybersecurity environment is based around a static defense that has been employed for the past few years to protect information systems (See Figure 6). Unfortunately, this cybersecurity paradigm is not effective against current and future cyber threats. According to Zheng (2014), the weakness of this cybersecurity approach is its passive and reactive nature towards safeguarding information systems. Additionally, this method also allows threat actors the time they require to conduct their reconnaissance and exploit any vulnerabilities that are discovered.
Moving Target Defense is a cyber security approach that is being developed to replace the current static defense with a dynamic defense (See Figure 7). This emerging cybersecurity approach increases the difficulty that threat actors face when attempting to breach an information system by fluctuating the “attack surface” and employing resilient hardware (DHS, 2016). Additionally, by employing this approach, the organization is hardening the security of its information systems to a point where it has become too expensive and complex. This should motivate threat actors to skip the organization employing the Moving Target Defense approach and seek out easier targets.
There are several ways that an organization can employ Moving Target Defense to safeguard …show more content…
Additionally, organizations with limited personnel can monitor its networks in multiple locations from a central hub. Utilizing remote agents is not entirely new; currently, system administrators utilize remote services to conduct updates and corrective maintenance. However, today’s emerging remote monitoring agents allow cybersecurity professionals to continuously monitor their organizations information and information systems and conduct certain digital forensics functions remotely (UMUC,