Security game for cyber physical systems

Abstract

The extensive use of information and communication technologies (ICT) in cyber physical systems (CPSs) make them vulnerable to cyber-attacks. One class of cyber-attack is advanced persistent threats where highly skilled attackers can steal user authentication information and then move laterally in the network, from host to host in a hidden manner until they reach an attractive target. The security modeling process of CPSs is divided into two phases of intrusion and disruption. In each phase, a game-theoretic paradigm with different parameters predicts the interactions between the attacker and the system. By solving the model, the security of CPSs is estimated in terms of probability of attack and probability of defend. After getting those the attackers and defenders can take optimized actions to maximize their gains. Most importantly, defender/systems can tune the system parameters to mitigate the attack.