m-Stability: Threshold Security Meets Transferable Utility

Proceedings of the 2021 on Cloud Computing Security Workshop Pub Date : 2021-11-15 DOI:10.1145/3474123.3486758

O. Biçer, B. Yildiz, Alptekin Küpçü

{"title":"m-Stability: Threshold Security Meets Transferable Utility","authors":"O. Biçer, B. Yildiz, Alptekin Küpçü","doi":"10.1145/3474123.3486758","DOIUrl":null,"url":null,"abstract":"Use of game theory and mechanism design in cloud security is a well-studied topic. When applicable, it has the advantages of being efficient and simple compared to cryptography alone. Most analyses consider two-party settings, or multi-party settings where coalitions are not allowed. However, many cloud security problems that we face are in the multi-party setting and the involved parties can almost freely collaborate with each other. To formalize the study of disincentivizing coalitions from deviating strategies, a well-known definition named k-resiliency has been proposed by Abraham et al. (ACM PODC '06). Since its proposal, k-resiliency and related definitions are used extensively for mechanism design. However, in this work we observe the shortcoming of k-resiliency. That is, although this definition is secure, it is too strict to use for many cases and rule out secure mechanisms as insecure. To overcome this issue, we propose a new definition named ℓ-repellence against the presence of a single coalition to replace k-resiliency. Our definition incorporates transferable utility in game theory as it is realistic in many distributed and multi-party computing settings. We also propose m-stability definition against the presence of multiple coalitions, which is inspired by threshold security in cryptography. We then show the advantages of our novel definitions on three mechanisms, none of which were previously analyzed against coalitions: incentivized cloud computation, forwarding data packages in ad hoc networks, and connectivity in ad hoc networks. Regarding the former, our concepts improve the proposal by Küpçü (IEEE TDSC '17), by ensuring a coalition-proof mechanism.","PeriodicalId":109533,"journal":{"name":"Proceedings of the 2021 on Cloud Computing Security Workshop","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2021 on Cloud Computing Security Workshop","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3474123.3486758","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

Use of game theory and mechanism design in cloud security is a well-studied topic. When applicable, it has the advantages of being efficient and simple compared to cryptography alone. Most analyses consider two-party settings, or multi-party settings where coalitions are not allowed. However, many cloud security problems that we face are in the multi-party setting and the involved parties can almost freely collaborate with each other. To formalize the study of disincentivizing coalitions from deviating strategies, a well-known definition named k-resiliency has been proposed by Abraham et al. (ACM PODC '06). Since its proposal, k-resiliency and related definitions are used extensively for mechanism design. However, in this work we observe the shortcoming of k-resiliency. That is, although this definition is secure, it is too strict to use for many cases and rule out secure mechanisms as insecure. To overcome this issue, we propose a new definition named ℓ-repellence against the presence of a single coalition to replace k-resiliency. Our definition incorporates transferable utility in game theory as it is realistic in many distributed and multi-party computing settings. We also propose m-stability definition against the presence of multiple coalitions, which is inspired by threshold security in cryptography. We then show the advantages of our novel definitions on three mechanisms, none of which were previously analyzed against coalitions: incentivized cloud computation, forwarding data packages in ad hoc networks, and connectivity in ad hoc networks. Regarding the former, our concepts improve the proposal by Küpçü (IEEE TDSC '17), by ensuring a coalition-proof mechanism.

查看原文本刊更多论文

m-稳定性:阈值安全性满足可转移效用

博弈论和机制设计在云安全中的应用是一个很好的研究课题。在适用的情况下，与单独的密码学相比，它具有高效和简单的优点。大多数分析考虑的是不允许联合的两党或多党情况。然而，我们面临的许多云安全问题都是在多方环境中，各方几乎可以自由地相互协作。为了使对偏离策略的抑制联盟的研究形式化，Abraham等人(ACM PODC '06)提出了一个著名的定义，即k-弹性。自提出以来，k-弹性及其相关定义被广泛用于机制设计。然而，在这项工作中，我们观察到k-弹性的缺点。也就是说，尽管这个定义是安全的，但对于许多情况来说，它过于严格，不能排除不安全的安全机制。为了克服这一问题，我们提出了一个新的定义，即针对单一联盟的存在，以取代k-弹性。我们的定义结合了博弈论中的可转移效用，因为它在许多分布式和多方计算设置中是现实的。我们还从密码学的阈值安全性中得到启发，提出了针对多联盟存在的m-稳定性定义。然后，我们展示了我们在三种机制上的新定义的优势，这些机制之前都没有针对联盟进行分析:激励云计算，在自组织网络中转发数据包，以及自组织网络中的连接。对于前者，我们的概念通过确保联盟防机制来改进Küpçü (IEEE TDSC '17)的提案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2021 on Cloud Computing Security Workshop

自引率

0.00%

发文量