{"title":"基于博弈论的主动网络防御策略","authors":"Qian-Yi Zhao, Jun Dong","doi":"10.1504/IJADS.2018.10010637","DOIUrl":null,"url":null,"abstract":"Traditional network safety evaluation only takes into account the attackers' measures to system threat and it lacks initiative defence strategies. To provide an overall and comprehensive analysis on security status of the network, this paper proposes an initiative network system defence strategy based on game theory. The scheme considers possible attack strategies and defence strategies to establish game strategy graph according to the dependency relationship among host vulnerabilities of network. Further, it puts forward a attack-defence game model with double roles and non-cooperation, defining payoff function on both sides. Then the model designs corresponding defence strategy search algorithm to provide a novel method to reflect real-time and scientific security situation evaluation intuitively. It computes the benefits of both sides to find a balance point and provides the optimal defence measure of defenders. The simulation results show that our strategy is more in line with the actual situation than traditional methods with unilateral evaluation on single side. The model can also rapidly respond to network system and it is feasible to improve the network security defence status.","PeriodicalId":216414,"journal":{"name":"Int. J. Appl. Decis. Sci.","volume":"54 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-04-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"An initiative network defence strategy based on game theory\",\"authors\":\"Qian-Yi Zhao, Jun Dong\",\"doi\":\"10.1504/IJADS.2018.10010637\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Traditional network safety evaluation only takes into account the attackers' measures to system threat and it lacks initiative defence strategies. To provide an overall and comprehensive analysis on security status of the network, this paper proposes an initiative network system defence strategy based on game theory. The scheme considers possible attack strategies and defence strategies to establish game strategy graph according to the dependency relationship among host vulnerabilities of network. Further, it puts forward a attack-defence game model with double roles and non-cooperation, defining payoff function on both sides. Then the model designs corresponding defence strategy search algorithm to provide a novel method to reflect real-time and scientific security situation evaluation intuitively. It computes the benefits of both sides to find a balance point and provides the optimal defence measure of defenders. The simulation results show that our strategy is more in line with the actual situation than traditional methods with unilateral evaluation on single side. The model can also rapidly respond to network system and it is feasible to improve the network security defence status.\",\"PeriodicalId\":216414,\"journal\":{\"name\":\"Int. J. Appl. Decis. Sci.\",\"volume\":\"54 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-04-11\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Int. J. Appl. Decis. Sci.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1504/IJADS.2018.10010637\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Int. J. Appl. Decis. Sci.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/IJADS.2018.10010637","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
An initiative network defence strategy based on game theory
Traditional network safety evaluation only takes into account the attackers' measures to system threat and it lacks initiative defence strategies. To provide an overall and comprehensive analysis on security status of the network, this paper proposes an initiative network system defence strategy based on game theory. The scheme considers possible attack strategies and defence strategies to establish game strategy graph according to the dependency relationship among host vulnerabilities of network. Further, it puts forward a attack-defence game model with double roles and non-cooperation, defining payoff function on both sides. Then the model designs corresponding defence strategy search algorithm to provide a novel method to reflect real-time and scientific security situation evaluation intuitively. It computes the benefits of both sides to find a balance point and provides the optimal defence measure of defenders. The simulation results show that our strategy is more in line with the actual situation than traditional methods with unilateral evaluation on single side. The model can also rapidly respond to network system and it is feasible to improve the network security defence status.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
