Defense of Cyber Infrastructures Against Cyber-Physical Attacks Using Game-Theoretic Models

被引:47
作者
Rao, Nageswara S. V. [1 ]
Poole, Stephen W. [1 ]
Ma, Chris Y. T. [2 ]
He, Fei [3 ]
Zhuang, Jun [4 ]
Yau, David K. Y. [5 ]
机构
[1] Oak Ridge Natl Lab, Div Math & Comp Sci, Oak Ridge, TN 37831 USA
[2] Adv Digital Sci Ctr, Singapore, Singapore
[3] Texas A&M Univ, Dept Mech & Ind Engn, Kingsville, TX USA
[4] SUNY Buffalo, Dept Ind & Syst Engn, Buffalo, NY USA
[5] Singapore Univ Technol & Design, Dept Comp Sci, Singapore, Singapore
关键词
Cyber infrastructures; cyber-physical networks; game theory; SECURITY; EQUILIBRIUM; DECEPTION; TERRORISM; SECRECY; FACE;
D O I
10.1111/risa.12362
中图分类号
R1 [预防医学、卫生学];
学科分类号
1004 ; 120402 ;
摘要
The operation of cyber infrastructures relies on both cyber and physical components, which are subject to incidental and intentional degradations of different kinds. Within the context of network and computing infrastructures, we study the strategic interactions between an attacker and a defender using game-theoretic models that take into account both cyber and physical components. The attacker and defender optimize their individual utilities, expressed as sums of cost and system terms. First, we consider a Boolean attack-defense model, wherein the cyber and physical subinfrastructures may be attacked and reinforced as individual units. Second, we consider a component attack-defense model wherein their components may be attacked and defended, and the infrastructure requires minimum numbers of both to function. We show that the Nash equilibrium under uniform costs in both cases is computable in polynomial time, and it provides high-level deterministic conditions for the infrastructure survival. When probabilities of successful attack and defense, and of incidental failures, are incorporated into the models, the results favor the attacker but otherwise remain qualitatively similar. This approach has been motivated and validated by our experiences with UltraScience Net infrastructure, which was built to support high-performance network experiments. The analytical results, however, are more general, and we apply them to simplified models of cloud and high-performance computing infrastructures.
引用
收藏
页码:694 / 710
页数:17
相关论文
共 36 条
[1]  
ALPCAN T., 2011, Network Security: A Decision and Game -theoretic Approach
[2]   A survey on networking games in telecommunications [J].
Altman, E ;
Boulogne, T ;
El-Azouzi, R ;
Jiménez, T ;
Wynter, L .
COMPUTERS & OPERATIONS RESEARCH, 2006, 33 (02) :286-311
[3]  
[Anonymous], 2003, GAME THEORY
[4]  
[Anonymous], COMPUTER SCI TECHNIC
[5]  
[Anonymous], 2012, Int. J. Perform. Eng
[6]  
[Anonymous], P 37 HAW INT C SYST
[7]  
[Anonymous], 1991, Game Theory
[8]  
Bier VM, 2009, INT SER OPER RES MAN, V128, P1, DOI 10.1007/978-0-387-87767-9
[9]   Modelling 'contracts' between a terrorist group and a government in a sequential game [J].
He, F. ;
Zhuang, J. .
JOURNAL OF THE OPERATIONAL RESEARCH SOCIETY, 2012, 63 (06) :790-809
[10]  
He F, 2013, 2013 IEEE 1ST INTERNATIONAL CONFERENCE ON CYBER-PHYSICAL SYSTEMS, NETWORKS, AND APPLICATIONS (CPSNA), P90, DOI 10.1109/CPSNA.2013.6614252