Miyaji Laboratory

Abstract

Advanced attack methods such as targeted attacks and zero-day attacks cannot be prevented by conventional defense techniques called perimeter defense.Therefore, research on deceptive defense systems, which protect the internal network environment by tricking the attacker after successfully penetrating the network, is in progress. For deceptive defense systems, it is essential to build a system that canprocess packets fast, efficiently, and flexibly. In this study, we designed and implemented a deceptive defense system, Loki, using the eXpress Data Path (XDP) provided by Linux and Software Defined Networking (SDN).The use of XDP and SDN technologies has enabled the provision of fast and flexible systems in various networks. In this paper, we describe the design of Loki, compare it with existing research, and evaluate its performance when the system is applied.