Go to DBLP homepageExtending Defense-in-Depth to Multi-Domain Networks
Abstract: Multi-domain networks, consisting of interconnected management domains with distinct control mechanisms, introduce unique cybersecurity challenges that are often overlooked in current research. This paper addresses these gaps by providing a formal definition of multi-domain networks and their management domains, emphasizing the security implications of inter-domain relationships. We extend the traditional Defense-in-Depth (DiD) strategy to account for both intra-domain security and cross-domain interactions, presenting a novel framework for DiD in multi-domain environments. A tri-objective optimization problem is formulated to balance defense effectiveness, resource costs, and operational impacts, which is solved using an improved genetic algorithm (IGADS). Simulations demonstrate the efficacy of this approach, offering a robust defense schema for securing multi-domain networks.
Loading