Network Security Evaluation Based on Stochastic Game and Network Entropy

doi:10.13190/j.jbupt.2014.s1.018

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2014, Vol. 37 ›› Issue (s1): 92-96.doi: 10.13190/j.jbupt.2014.s1.018

• Reports • Previous Articles Next Articles

Network Security Evaluation Based on Stochastic Game and Network Entropy

CHEN Yong-qiang¹, WU Xiao-ping¹, FU Yu¹, SONG Yan²

1. Department of Information Security, Naval University of Engineering, Wuhan 430033, China;
2. Information Security Technology Key Laboratory, Beijing 100091, China

Received:2014-01-26 Online:2014-06-28 Published:2014-06-28
Supported by:

Abstract

Abstract:

A security evaluation based on network entropy and stochastic game was presented. An attack defense stochastic game model was proposed to describe the conflict of network security which is dynamic and multi-state. The concept of network entropy was introduced to describe network security performance. The optimal defense strategy and network state probability was obtained by solving the Nash equilibrium of attack defense stochastic game model. On this basis, the security of network was assessed combining with network states entropy difference. Network security evaluation algorithm was given at last. An example is representatively provided to show that the method can effectively assess the security of network and predict intrusion behavior.

Key words: network security, network entropy, stochastic game, confrontation model, intrusion effect

CLC Number:

TP309

CHEN Yong-qiang, WU Xiao-ping, FU Yu, SONG Yan. Network Security Evaluation Based on Stochastic Game and Network Entropy[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 92-96.

References

[1] Kumar K, Joshir C, Singh K. A distributed approach using entropy to detect DDoS attacks in ISP domain[C]// International Conference on Signal Processing, Communications and Networking. New York: IEEE Press, 2007: 331-337.

[2] 汤永利, 徐国爱, 钮心忻,等. 基于信息熵的信息安全风险分析模型[J]. 北京邮电大学学报, 2008, 31(2): 50-53. Tang Yongli, Xu Guoai, Niu Xinxin,et al. Information security risk analysis model using information entropy[J]. Journal of Beijing University of Posts and Telecommunications, 2008, 31(2): 50-53.

[3] 陈娟, 马涛. 移动Ad Hoc网络DoS攻击效果评估方法[J]. 电光与控制, 2012, 19(3): 86-89. Chen Juan, Ma Tao. DoS attack effect assessment method in mobile Ad Hoc network [J]. Electronics Optics & Control, 2012, 19(3): 86-89.

[4] 吴焕, 潘林, 王晓箴,等. 应用不完整攻击图分析的风险评估模型[J]. 北京邮电大学学报, 2010, 33(3): 57-61. Wu Huan, Pan Lin, Wang Xiaozhen,et al. A risk assessment model using incomplete attack graphs analysis[J]. Journal of Beijing University of Posts and Telecommunications, 2010, 33(3): 57-61

[5] 刘玉玲, 冯登国, 吴丽辉, 等. 基于静态贝叶斯博弈的蠕虫攻防策略绩效评估[J]. 软件学报, 2012, 23(3):712-723. Liu Yuling, Feng Dengguo, Wu Lihui, et al. Performance evaluation of worm attack and defense strategies based on static bayesian game[J]. Journal of Software, 2012, 23(3):712-723

[6] 王元卓, 林闯, 程学旗, 等. 基于随机博弈模型的网络攻防量化分析[J]. 计算机学报, 2010, 33(9): 1748-1762. Wang Yuanzhuo, Lin Chuang, Cheng Xueqi, et al. Analysis for Network Attack-Defense Based on Stochastic Game Model[J]. Chinese Journal of Computers. 2010, 33(9): 1748-1762.

[7] 叶云, 徐锡山, 贾焰, 等. 基于攻击图的网络安全概率计算方法[J]. 计算机学报, 2010, 33(10): 1987-1996. Ye Yun, Xu Xishan, Jia Yan, et al. An attack graph-based probabilistic computing approach of network security[J]. Chinese Journal of Computers, 2010, 33(10): 1987-1996.

[8] 吴迪, 冯登国, 连一峰, 等. 一种给定脆弱性环境下的安全措施效用评估模型[J]. 软件学报, 2012, 23(7): 1880-1898. Wu Di, Feng Dengguo, Lian Yifeng, et al. Efficiency evaluation model of system security measures in the given vulnerabilities set[J]. Journal of Software, 2012, 23(7): 1880-1898.

[1]	SHI Zicheng, LI Xin, TANG Ying, HUANG Shanguo. Optical Packet Filtering System Based on All-Optical Pattern Matching [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(3): 96-101.
[2]	YANG Hongyu, YUAN Haihang, ZHANG Liang. A Risk Assessment Method of Network Host Node with Host Importance [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(2): 16-21.
[3]	TANG Hong-wei, FENG Sheng-zhong, ZHAO Xiao-fang. TOChain: a High-Performance SFC for Virtual Network Security [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(1): 70-80.
[4]	LI Xu, BAO Jing-jing, LIU Ying. Formation Security: Black Hole Problem [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(1): 12-17.
[5]	BAI Yuan, WANG Qian, JIA Qi-lan, ZHANG Hui-bing. An Efficient and Secured AKA for EPS Networks [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(s1): 10-14.
[6]	LIU Jing, GU Li-ze, Niu Xin-xin, YANG Yi-xian, LI Zhong-xian. Network Security Events Analyze Method Based on Neural Networks and Genetic Algorithm [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(2): 50-54.
[7]	FU Yu, CHEN Yong-qiang, WU Xiao-ping, SONG Yan. Network Attack-Defense Strategies Selection Based on Stochastic Game Model [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 35-39.
[8]	. Network Security Analysis Based on Host-Security-Group [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2012, 35(1): 19-23.
[9]	. Network Security Assessment Based on Node Correlated HMM [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2010, 33(6): 121-124.
[10]	QIN Hua-Wang Yue-Wei DAI Zhi-Quan WANG. Security Situation Evaluation of Intrusion Tolerant System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(2): 57-61.
[11]	CHEH Tian-Ping. Application of Graph Theory in Threat Situation Analysis of Network Security [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(1): 113-117.
[12]	XIN Yang, GAO Xue-song, GAO Cheng, YANG Yi-xian . Design of Safety System to Improve the Qualitative Performance of SSL Protocol [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2007, 30(6): 89-93.
[13]	WANG Ping, FANG Bin-xing, YUN Xiao-chun. The Division Based Restraint Approach of Worm Propagation [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2006, 29(5): 24-27.
[14]	YANG Wu, FANG Bin-xing, YUN Xiao-chun, ZHANG Hong-li, HU Ming-zeng. Research and Implementation of a High-Performance Distributed Intrusion Detection System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2004, 27(4): 83-86.
[15]	XU Jie-feng. The Research of Covert Channels Based on TCP/IP [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2003, 26(S1): 144-150.

Network Security Evaluation Based on Stochastic Game and Network Entropy

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments