A Survey of Game Theoretic Methods for Cyber Security

Wang, Yuan; Wang, Yongjun; Liu, Jing; Zhi-jian, Huang; Xie, Peng

doi:10.1109/dsc.2016.90

Cited by 32 publications

(12 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, these work analyzed the offensive and defensive strategy based on the complete information game. However, the information of both offensive and defensive sides is usually asymmetry in practice [14]. Specifically, the asymmetrical information can be represented by the game features such as the strategy set and the payoff function of the attacker and the defender.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Prospect Theoretic Study of Honeypot Defense Against Advanced Persistent Threats in Power Grid

Tian

Liu

et al. 2020

IEEE Access

View full text Add to dashboard Cite

As one of the most critical infrastructure, the power grid has been increasingly threatened by network attacks, especially advanced persistent threats (APTs). APT in the power grid is a continual and stealthy attack that analyzes the interaction between the cyber layer and the physical layer. The existing offensive and defensive processes for power grid using honeypots against APTs are modeled based on full rationality. Therefore, both the attacker and the defender make decisions to maximize their payoffs under full rationality. However, fully rational decisions made by end-users are not always conformed with the real cases, and prospect theory is a typical boundedly rational method to model these deviations. In this study, we propose a subjective APT-honeypot game model to study the offensive and defensive interactions between the attacker and the defender based on the prospect theory. In this model, we protect the power grid bus nodes by deploying honeypots, which consider both low-and high-interaction honeypot modes. We prove the existence of Bayesian-Nash equilibrium strategies in defense and attack strategies under bounded rationality. In addition, we used IEEE-30 Bus system to verify the proposed model in this paper. Experiment results show that bounded rationality affects strategy selection and reduces attacker's payoffs. INDEX TERMS Honeypot, game theory, power grid, APT, prospect theory.

show abstract

Section: Related Workmentioning

confidence: 99%

“…Analogously, the payoff of the 0-day access attack using strategy ν 2 can be expressed like (21). In addtion, from (14), (16), (17) and (19), the payoffs are dependent on the value of parameters. Hence, the attacker does not have a strictly dominant strategy.…”

Section: The Bne Of Sahgmentioning

confidence: 99%

Prospect Theoretic Study of Honeypot Defense Against Advanced Persistent Threats in Power Grid

Tian

Liu

et al. 2020

IEEE Access

View full text Add to dashboard Cite

show abstract

“…On the basis of perspectives, games can be categorized into several classes. The varied types of games have been discussed in this section below: Figure 4 represents the classification of various game models plus the security issues each class of games handles [70]. Co-operative games: In a cooperative game, every player enforces cooperative behaviour.…”

Section: Classification Of Games With Their Appications In Network Securitymentioning

confidence: 99%

“…It is an evolving area of security. Eavesdropping and jamming attacks are commonplace on the communication channel of networks [70]. Notably, these attacks are more alarming for wireless networks in comparison to wired networks.…”

Section: Physical Layer Securitymentioning

confidence: 99%

A Comprehensive Insight into Game Theory in relevance to Cyber Security

Anwar

Khan

Olanrewaju

et al. 2020

IJEEI

View full text Add to dashboard Cite

The progressively ubiquitous connectivity in the present information systems pose newer challenges to security. The conventional security mechanisms have come a long way in securing the well-defined objectives of confidentiality, integrity, authenticity and availability. Nevertheless, with the growth in the system complexities and attack sophistication, providing security via traditional means are increasingly becoming unachievable. A novel theoretical perspective and an innovative approach are thus required for understanding security from a decision-making and strategic viewpoint. One of the analytical tools which may assist the researchers in designing security protocols for computer networks is game theory. The game-theoretic concept finds extensive applications in security at different levels, including the cyberspace and is generally categorized under security games. It can be utilized as a robust mathematical tool for modelling and analyzing contemporary security issues. Game theory offers a natural framework for capturing the defensive as well as adversarial interactions between the defenders and the attackers. Furthermore, defenders can attain a deep understanding of the potential attack threats and the strategies of attackers by equilibrium evaluation of the security games. In this paper, the concept of game theory has been presented, followed by game-theoretic applications in cybersecurity, including cryptography. Different types of games, particularly those focused on securing the cyberspace, have been analysed and varied game-theoretic methodologies including mechanism design theories have been outlined for offering a modern foundation of the science of cybersecurity.

show abstract

“…There is an antagonistic conflict with opposite goals (the so-called scheme of strict antagonism). We apply game theory and reduce this conflict situation to pair game with zero sum for the choice of the justified decisions [11][12][13]. The implementation of methods realizing power demonstrative blocking is passive, since it has no mechanisms to influence the enemy (passively expects information and technical impact), and in the case of high efficiency it can lead to frustration of the information needs of the enemy and force him to change the impact strategy and (or) compensate for the lack of information from other sources.…”

Section: Basic Protective Settingsmentioning

confidence: 99%

Innovative Development of Tools and Technologies to Ensure the Russian Information Security and Core Protective Guidelines

Maximov¹,

Krupenin²,

Sharifullin³

et al. 2019

Cybersecurity Issues

View full text Add to dashboard Cite

In this work, we produced the analysis results of information technology development and information security threats in various areas. Effective use information technologies is a core factor for accelerating economic development and organizing new information society. However, information technology evolution is limited by capabilities of information security tools, their extensive development and ever-growing threats. The existing autocratic control of the information security system leads to the inevitable introduction of bans on technologies and infrastructures not controlled by it, that in turn reduces the effectiveness of innovation activities in the field of information technologies. Contradictions between the growth of information technology applications by business entities and the achievement of an acceptable level of their information security are shown. It is shown that intelligence tools and an effective information security system are in constant antagonistic conflict that can be described by a zero-sum pair game, and there is a tendency for advanced technical development of intelligence systems and tools in relation to the information security system. The possible ways for innovative development of information security tools and technologies are produced. This tools and technologies implementing principle of non-conflict protection.

show abstract

A Survey of Game Theoretic Methods for Cyber Security

Cited by 32 publications

References 27 publications

Prospect Theoretic Study of Honeypot Defense Against Advanced Persistent Threats in Power Grid

Prospect Theoretic Study of Honeypot Defense Against Advanced Persistent Threats in Power Grid

A Comprehensive Insight into Game Theory in relevance to Cyber Security

Innovative Development of Tools and Technologies to Ensure the Russian Information Security and Core Protective Guidelines

Contact Info

Product

Resources

About