Network Attack-Defense Strategies Selection Based on Stochastic Game Model

doi:10.13190/j.jbupt.2014.s1.007

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2014, Vol. 37 ›› Issue (s1): 35-39.doi: 10.13190/j.jbupt.2014.s1.007

• Papers • Previous Articles Next Articles

Network Attack-Defense Strategies Selection Based on Stochastic Game Model

FU Yu¹, CHEN Yong-qiang¹, WU Xiao-ping¹, SONG Yan²

1. Department of Information Security, Naval University of Engineering, Wuhan 430033, China;
2. Information Security Technology Key Laboratory, Beijing 100091, China

Received:2014-01-26 Online:2014-06-28 Published:2014-06-28
Supported by:

Abstract

Abstract:

Game theory was applied on network defense very well. And static model was used widely in most of the previous studies. However, there shows that such models have not take attack-defense cost into consideration and also cannot follow the evolving of the intention and strategies of attacks. A stochastic game model is proposed based on host vulnerability information. Combining host important degree and success rate of defense measures, attack-defense cost in single security attribute is analyzed, then a cost quantitative method with attack-defense intention is provided. An algorithm for attack-defense equilibrium strategy selection based on those models is proposed. Another example is given to illustrate the efficacy of this model and algorithm.

Key words: network security, attack-defense model, strategies selection, stochastic game, vulnerability

CLC Number:

TP309

FU Yu, CHEN Yong-qiang, WU Xiao-ping, SONG Yan. Network Attack-Defense Strategies Selection Based on Stochastic Game Model[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 35-39.

References

[1] 姜伟, 方滨兴, 田志宏, 等. 基于攻防博弈模型的网络安全测评和最优主动防御[J]. 计算机学报, 2009, 32(4): 817-827. Jiang Wei, Fang Binxing, Tian Zhihong, et al. Evaluating network security and optimal active defense based on attack-defense game model[J]. Chinese Journal of Computers, 2009, 32(4): 817-827.

[2] Liu Peng, Zang Wanyu, Yu Meng. Incentive-based modeling and inference of attacker intent, objectives, and strategies. ACM Transactions on Information and System Security, 2005, 8(1): 1-41.

[3] Lye K, Wing J M. Game strategies in network security[C]//Proceedings of the 15^th IEEE Computer Security Foundations Workshop. Copenhagen, 2002, 4(1-2): 71-86.

[4] Hadi O, Mona M, Chadi A, et al. Game theoretic models for detecting network intrusions[J]. Computer Communications, 2008, 31(10): 1934-1944.

[5] 林旺群, 王慧, 刘家红, 等. 基于非合作动态博弈的网络安全主动防御技术研究[J]. 计算机研究与发展, 2011, 48(2): 306-316. Lin Wangqun, Wang Hui, Liu Jiahong, et al. Research on active defense technology in network security based on non-cooperative dynamic game theory[J]. Journal of Computer Research and Development, 2011, 48(2): 306-316.

[6] 石进, 郭山清, 陆音, 等. 一种基于攻击图的入侵响应方法[J]. 软件学报, 2009, 19(10): 2746-2753. Shi Jin, Guo Shanqing, Lu Yin, et al. An intrusion response method based on attack graph[J]. Journal of Software, 2009, 19(10): 2746-2753.

[7] 王元卓, 林闯, 程学旗, 等. 基于随机博弈模型的网络攻防量化分析[J]. 计算机学报, 2010, 33(9): 1748-1762. Wang Yuanzhuo, Lin Chuang, Cheng Xueqi, et al. Analysis for network attack-fefense based on stochastic game model[J]. Chinese Journal of Computers, 2010, 33(9): 1748-1762.

[8] 张永铮, 方滨兴, 迟悦, 等. 网络风险评估中网络节点关联性的研究[J]. 计算机学报, 2007, 30(2): 234-240. Zhang Yongzheng, Fang Binxing, Chi Yue, et al. Research on network node correlation in network risk assessment[J]. Chinese Journal of Computers, 2007, 30(2): 234-240.

[1]	SHI Zicheng, LI Xin, TANG Ying, HUANG Shanguo. Optical Packet Filtering System Based on All-Optical Pattern Matching [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(3): 96-101.
[2]	YANG Hongyu, YUAN Haihang, ZHANG Liang. A Risk Assessment Method of Network Host Node with Host Importance [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(2): 16-21.
[3]	LI Yong-cheng, LIU Shu-mei, YU Yao, LI Shuang. Road Network Vulnerability Identification Considering the Impact of Road Sections and Intersections Congestion [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(1): 14-20.
[4]	WANG Si-qi, MIAO Si-wei, ZHANG Xiao-ling, SHI Zhi-qiang, LU Xin-dai. Static Vulnerability Detection Technology for the Embedded Firmware Web Code Based on D-S Evidence Theory [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(5): 91-99.
[5]	CHEN Wen-bai, CUI Xiao-li, HAO Cui, WANG Wen-kai. Hierarchical Invulnerability Topology Construction Method for IoT System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(5): 103-109,114.
[6]	TANG Hong-wei, FENG Sheng-zhong, ZHAO Xiao-fang. TOChain: a High-Performance SFC for Virtual Network Security [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(1): 70-80.
[7]	LI Xu, BAO Jing-jing, LIU Ying. Formation Security: Black Hole Problem [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(1): 12-17.
[8]	BAI Yuan, WANG Qian, JIA Qi-lan, ZHANG Hui-bing. An Efficient and Secured AKA for EPS Networks [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(s1): 10-14.
[9]	WANG Xiu-juan, SUN Bo, LIAO Yan-wen, XIANG Cong-bin. Computer Network Vulnerability Assessment Based on Bayesian Attribute Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(4): 110-116.
[10]	LIU Jing, GU Li-ze, Niu Xin-xin, YANG Yi-xian, LI Zhong-xian. Network Security Events Analyze Method Based on Neural Networks and Genetic Algorithm [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(2): 50-54.
[11]	CHEN Yong-qiang, WU Xiao-ping, FU Yu, SONG Yan. Network Security Evaluation Based on Stochastic Game and Network Entropy [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 92-96.
[12]	. Network Security Analysis Based on Host-Security-Group [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2012, 35(1): 19-23.
[13]	. A BGP Vulnerability on Supporting 4Octet AS Number Space [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2011, 34(s1): 114-118.
[14]	. Network Security Assessment Based on Node Correlated HMM [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2010, 33(6): 121-124.
[15]	QIN Hua-Wang Yue-Wei DAI Zhi-Quan WANG. Security Situation Evaluation of Intrusion Tolerant System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(2): 57-61.

Network Attack-Defense Strategies Selection Based on Stochastic Game Model

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments