Let’s breakdown what each of these approachesmean, so that we can use that as a basis for a business discussion. DHS defines MTD as the following:
Moving Target Defense (MTD) is the concept of controlling change across multiple system dimensions in order to increase uncertainty and apparent complexity for attackers, reduce their window of opportunity and increase the costs of their probing and attack efforts. MTD assumes that perfect security is unattainable. Given that starting point, and the assumption that all systems are compromised, research in MTD focuses on enabling the continued safe operation in a compromised environment and to have systems that are defensible rather than perfectly secure.
In a nutshell, this approach creates a significant set of barriers for adversaries:
- It’s expensive to defeat
- It’s challenging to defeat
Those two drivers alone will wash out 90% of those intending to breach your external web
surface. Trying to navigate a matrix of false flags is dizzying and daunting for the adversary.