Modeling a Multitarget Attacker–Defender Game with Budget Constraints

Guan, Peiqiu; He, Meilin; Zhuang, Jun; Hora, Stephen C.

doi:10.1287/deca.2017.0346

Cited by 65 publications

(35 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, appropriate resource allocations can greatly protect the defender from possible attacks, whereas improper decisions could lead to a waste of resources or even unprecedented damages to the defender's interest. Thus, knowing how to make the best use of resources is highly important, especially under circumstances of limited resources …”

Section: Introductionmentioning

confidence: 99%

“…Thus, knowing how to make the best use of resources is highly important, especially under circumstances of limited resources. 2,3 To date, many researchers have addressed the attacker-defender game, where each player seeks to maximize a single objective function under certain constraints. Game theory and the concept of Nash equilibrium have been recognized as suitable tools for studying such strategy-interaction resource allocation problems for a long time.…”

Section: Introductionmentioning

confidence: 99%

“…(1) consisting of multiple elements interacting with each other, (2) following an established or organized procedure, and (3) aiming to accomplish certain objectives. In fact, from a system perspective, the resource allocation game between two players matches these specific characteristics.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A game‐theoretic model for resource allocation with deception and defense efforts

Zhang

Hipel

et al. 2019

Systems Engineering

View full text Add to dashboard Cite

This paper develops a strategy for assisting two players in allocating multiple resources in a strategic sequential game. The defender first needs to allocate deception and defense efforts among targets to deceive the attacker and strengthen the target, respectively. Then, the attacker chooses a type of threat and a target to attack. The defender aims at mitigating the possible damage to the targets, whereas the attacker strives to cause maximum damage to the targets. Traditional modeling approaches typically focus only on the defender's homogeneous resource in defense and are not well suited to effectively capture the complex interplay between players. Given scarce resources, a game‐theoretic model is proposed for determining optimal strategies for both players. The key novel features of this model include: (1) the attacker's learning and the defender's counter‐learning efforts are considered; (2) trade‐offs between deception and defense efforts among different targets for the defender are investigated; and (3) sensitive analysis is carried out to see how different parameters can affect the equilibrium results. An illustrative example is presented to demonstrate the procedure of this game‐theoretic model and show its effectiveness. The results can provide additional insights for defense and deception strategies.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A game‐theoretic model for resource allocation with deception and defense efforts

Zhang

Hipel

et al. 2019

Systems Engineering

View full text Add to dashboard Cite

show abstract

“…No matter whether an action is successful, the actor will incur some cost by taking the action. Recent studies about the effort of deterrence and risk preferences in the security games [11], [12] have analyzed the impact of risk preference on the defense effort and deterrence level, and the impact of defender's cost on the investment strategy. Meanwhile, statistics show that a large data center costs between $10 million and $25 million per year and the corresponding maintenance costs account for nearly 80% of its total cost [13].…”

Section: Introductionmentioning

confidence: 99%

Allocating Limited Resources to Protect a Massive Number of Targets Using a Game Theoretic Model

Liu

et al. 2019

Mathematical Problems in Engineering

View full text Add to dashboard Cite

Resource allocation is the process of optimizing the rare resources. In the area of security, how to allocate limited resources to protect a massive number of targets is especially challenging. This paper addresses this resource allocation issue by constructing a game theoretic model. A defender and an attacker are players and the interaction is formulated as a tradeoff between protecting targets and consuming resources. The action cost which is a necessary role of consuming resource, is considered in the proposed model. Additionally, a bounded rational behavior model (Quantal Response, QR), which simulates a human attacker of the adversarial nature, is introduced to improve the proposed model. To validate the proposed model, we compare the different utility functions and resource allocation strategies. The comparison results suggest that the proposed resource allocation strategy performs better than others in the perspective of utility and resource effectiveness.

show abstract

“…Extensive studies have been conducted to investigate how false positives affect information security investment, security systems design, and security systems performance (e.g. Cavusoglu et al 2005, 2009, Ulvila and Gaffney 2004, Guan et al 2017, Salman et al 2014, Duan et al 2012.…”

Section: Introductionmentioning

confidence: 99%

When Hackers Err: The Impacts of False Positives on Information Security Games

Mai

Kulkarni

2018

Decision Analysis

View full text Add to dashboard Cite

False positive rates and their impacts have been a focal point for information security research. However, most of this research investigates false positives exclusively from the system defender's perspective, while in reality an attacker also faces the classification decision in identifying feasible targets and the consequences of false positive rates. In this paper, we present the first comprehensive analytical model that incorporates the false positives both from the perspective of the attacker as well as of the system defender. Our results show that such false positives from the attacker's perspective have a significant impact on the attacker's decision making for an attack, as well as the optimal protection strategy for the defender. Our results help to shed new light on a wide range of diverse information security phenomena such as spam emails, the Nigerian scams, and the design of Honeypot as a security mechanism. In addition, we show how an attacker's mis-estimation of certain parameter would affect the defender's strategy, and how the heterogeneity of the systems impacts the defender's strategy to manipulate the attacker's possible mis-estimation.

show abstract

Modeling a Multitarget Attacker–Defender Game with Budget Constraints

Cited by 65 publications

References 43 publications

A game‐theoretic model for resource allocation with deception and defense efforts

A game‐theoretic model for resource allocation with deception and defense efforts

Allocating Limited Resources to Protect a Massive Number of Targets Using a Game Theoretic Model

When Hackers Err: The Impacts of False Positives on Information Security Games

Contact Info

Product

Resources

About