cyel Moving Target Security

cyel Moving Target Security is a network security solution that implements a "moving target" defense strategy by dynamically obfuscating network topology and traffic patterns rather than relying solely on static perimeter defenses. The solution operates by deploying a software-defined network (SDN) overlay in front of existing infrastructure, routing all data traffic through it without requiring changes to network cabling, user systems, servers, or applications. It supports both layer-2 and layer-3 existing infrastructure and converts it into a zoned layer-3 network. Core technologies include: - Attack Surface Mutation: Each device is assigned a new IP address per transaction, preventing identification of sender and recipient across sessions. - End-to-end Encryption: All communications are encrypted point-to-point, with encryption changing at each node to prevent packet tracing. - AAA (Authentication, Authorization, and Accounting): Only authenticated and explicitly whitelisted devices can participate in network processes; all activity is logged. - Honeypot Diversion: Detected attackers are redirected to a simulated environment for observation without risk of damage. - Dummy Traffic: Traffic padding is injected to mask real communication patterns and server usage. The system provides dynamic flow checking to monitor all data traffic and protect network interfaces, ports, and services. Lateral movement by intruders is detectable by design, and metadata leakage is prevented. Security levels can scale automatically based on threat level.