Optimal Design and Defense of Networks Under Link Attacks

Bravard, Christophe; Charroin, Liza

doi:10.2139/ssrn.2631443

Cited by 9 publications

(14 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Related Works: Security is a critical concern for infrastructure networks [3,4]. e method in our work is relevant to the recent advances in adversarial networks [5,6] and network formation games [7,8]. In particular, we jointly design the optimal protection and recovery strategies for infrastructure networks.…”

Section: Introductionmentioning

confidence: 99%

A Dynamic Game Analysis and Design of Infrastructure Network Protection and Recovery

Chen

Touati

Zhu

2017

SIGMETRICS Perform. Eval. Rev.

View full text Add to dashboard Cite

Infrastructure networks are vulnerable to both cyber and physical a acks. Building a secure and resilient networked system is essential for providing reliable and dependable services. To this end, we establish a two-player three-stage game framework to capture the dynamics in the infrastructure protection and recovery phases. Speci cally, the goal of the infrastructure network designer is to keep the network connected before and a er the a ack, while the adversary aims to disconnect the network by compromising a set of links. With costs for creating and removing links, the two players aim to maximize their utilities while minimizing the costs. In this paper, we use the concept of subgame perfect equilibrium (SPE) to characterize the optimal strategies of the network defender and attacker. We derive the SPE explicitly in terms of system parameters. Finally, we use a case study of UAV-enabled communication networks for disaster recovery to corroborate the obtained analytical results.

show abstract

Section: Introductionmentioning

confidence: 99%

A Dynamic Game Analysis and Design of Infrastructure Network Protection and Recovery

Chen

Touati

Zhu

2017

SIGMETRICS Perform. Eval. Rev.

View full text Add to dashboard Cite

show abstract

“…Our approach is related to the recent advances in research on network formation [5], adversarial networks [6], [7], and network games [8], [9]. In particular, we address a heterogeneous multilayer network design problem and apply the framework to smart infrastructure networks.…”

Section: Introductionmentioning

confidence: 99%

Heterogeneous Multi-Layer Adversarial Network Design for the IoT-Enabled Infrastructures

Chen¹,

Touati²,

Zhu³

2017

GLOBECOM 2017 - 2017 IEEE Global Communications Conference

View full text Add to dashboard Cite

Abstract-The emerging Internet of Things (IoT) applications that leverage ubiquitous connectivity and big data are facilitating the realization of smart everything initiatives. IoT-enabled infrastructures can be naturally divided into two layers including the existing infrastructure layer and the underlaid device network. The connectivity between different components in the infrastructure networks plays an important role in delivering realtime information and ensuring a high-level situational awareness. However, IoT-enabled infrastructures face cyber threats due to the wireless nature of communications. Therefore, maintaining the network connectivity in the presence of adversaries is a critical task for the infrastructure network operators. In this paper, we establish a three-player three-stage game-theoretic framework including two network operators and one attacker to capture the secure design of multi-layer infrastructure networks by allocating limited resources. We use subgame perfect Nash equilibrium (SPE) to characterize the strategies of players with sequential moves. In addition, we assess the efficiency of the equilibrium network by comparing with its team optimal solution counterparts in which two network operators can coordinate to design a secure network. We further design a scalable algorithm to construct the equilibrium secure IoT-enabled infrastructure networks. Finally, we use case studies on Internet of Battlefield Things (IoBT) to corroborate the obtained results.

show abstract

“…Note that different cases corresponding to k 1 mod 2 = 0 or n 2 (k 2 + 1) mod 2 = 1 can be studied in a similar fashion as in our current context. The only difference is that for certain system parameters, s D 0 is not an optimal strategy comparing with s D n2−1 by following a similar analysis in [10]. Therefore, based on the above conditions, the scenarios that we analyze are quite general and conform with the situations in the adversarial IoT networks.…”

Section: Optimal Strategy and Construction Of Iot Networkmentioning

confidence: 96%

“…In this work, we investigate the secure design of IoT network by considering its connectivity measure [9], [10], [26], [27] through the lens of graph theory [28]. Comparing with the previous works [9], [10] that have focused on a single-layer adversarial network design, we model the IoT as a two-layer network and strategically design each layer of the network with heterogeneous security requirements. The current work is also related to the secure and resilient interdependent critical infrastructures [29]- [33] in which a holistic design approach is required.…”

Section: A Related Workmentioning

confidence: 99%

Optimal Secure Two-Layer IoT Network Design

Chen

Touati

Zhu³

2020

IEEE Trans. Control Netw. Syst.

View full text Add to dashboard Cite

With the remarkable growth of the Internet and communication technologies over the past few decades, Internet of Things (IoTs) is enabling the ubiquitous connectivity of heterogeneous physical devices with software, sensors, and actuators. IoT networks are naturally two-layer with the cloud and cellular networks coexisting with the underlaid device-todevice (D2D) communications. The connectivity of IoTs plays an important role in information dissemination for missioncritical and civilian applications. However, IoT communication networks are vulnerable to cyber attacks including the denialof-service (DoS) and jamming attacks, resulting in link removals in IoT network. In this work, we develop a heterogeneous IoT network design framework in which a network designer can add links to provide additional communication paths between two nodes or secure links against attacks by investing resources. By anticipating the strategic cyber attacks, we characterize the optimal design of secure IoT network by first providing a lower bound on the number of links a secure network requires for a given budget of protected links, and then developing a method to construct networks that satisfy the heterogeneous network design specifications. Therefore, each layer of the designed heterogeneous IoT network is resistant to a predefined level of malicious attacks with minimum resources. Finally, we provide case studies on the Internet of Battlefield Things (IoBT) to corroborate and illustrate our obtained results. Fig. 1: In IoBT networks, a team of UAVs and a group of soldiers and UGVs execute missions cooperatively. The agents in the battlefield share critical information through D2D communications. The UAV network and ground network form a two-layer network which faces cyber threats, e.g., jamming attacks which can lead to link removals.network in a battlefield which can be susceptible to jamming attacks. It is essential to design communication networks that can allow the IoBT networks to be robust to natural failures and secure to cyber attacks in order to keep a high-level situational awareness of agents in a battlefield.Due to heterogeneous and multi-tier features of the IoT networks, the required security levels can vary for different networks. For example, in IoBT networks, the connectivity of UAV networks requires a higher security level than the ground network if the UAVs are more likely to be targeted by the adversary. Similarly, in vehicular networks, the communication links between RSUs need a high-level protection when they anticipate more attacks than the vehicles do. Therefore, it is imperative to design secure IoT networks resistant to link attacks and maintain the two-layer network connectivity with heterogeneous security requirements simultaneously. To this end, we present a heterogeneous IoT network design framework in which network links are vulnerable to malicious attacks. To enhance the security and the robustness of the network, an IoT network designer can add extra links to provide additional communication paths b...

show abstract

Optimal Design and Defense of Networks Under Link Attacks

Cited by 9 publications

References 29 publications

A Dynamic Game Analysis and Design of Infrastructure Network Protection and Recovery

A Dynamic Game Analysis and Design of Infrastructure Network Protection and Recovery

Heterogeneous Multi-Layer Adversarial Network Design for the IoT-Enabled Infrastructures

Optimal Secure Two-Layer IoT Network Design

Contact Info

Product

Resources

About