{"title":"资源分配竞赛中的预防性-反应性防御权衡","authors":"Keith Paarporn;Shouhuai Xu","doi":"10.1109/LCSYS.2024.3486629","DOIUrl":null,"url":null,"abstract":"The connectivity enabled by modern computer networking technologies introduces vulnerabilities to adversarial attacks. Although it is ideal to be able to prevent all possible cyber attacks, this is not possible or feasible in practice and society must accept that attacks are inevitable. While many works study optimal security policies to minimize the chance of successful attacks, there are many unexplored territories. In this letter, we formulate and investigate a new problem, namely the tradeoff between the effort or resource that should be spent on preventing attacks (i.e., preventive defense) and the effort or resource that should be spent on recovering from attacks (i.e., reactive defense). We formulate the problem as a resource allocation game between the defender and the attacker, where they decide how to allocate resources to defend and attack a set nodes (e.g., computers), respectively. The game unfolds in two phases. (i) Allocate preventive resources to reduce the probabilities that the nodes are successfully compromised by the attacker. (ii) The compromised nodes undergo a recovery process, which can be sped up with the allocation of more reactive defense resources. Our results completely characterize the Nash equilibria of this game, revealing the defender’s optimal allocation of preventive versus reactive resources.","PeriodicalId":37235,"journal":{"name":"IEEE Control Systems Letters","volume":"8 ","pages":"2421-2426"},"PeriodicalIF":2.4000,"publicationDate":"2024-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Preventive-Reactive Defense Tradeoffs in Resource Allocation Contests\",\"authors\":\"Keith Paarporn;Shouhuai Xu\",\"doi\":\"10.1109/LCSYS.2024.3486629\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The connectivity enabled by modern computer networking technologies introduces vulnerabilities to adversarial attacks. Although it is ideal to be able to prevent all possible cyber attacks, this is not possible or feasible in practice and society must accept that attacks are inevitable. While many works study optimal security policies to minimize the chance of successful attacks, there are many unexplored territories. In this letter, we formulate and investigate a new problem, namely the tradeoff between the effort or resource that should be spent on preventing attacks (i.e., preventive defense) and the effort or resource that should be spent on recovering from attacks (i.e., reactive defense). We formulate the problem as a resource allocation game between the defender and the attacker, where they decide how to allocate resources to defend and attack a set nodes (e.g., computers), respectively. The game unfolds in two phases. (i) Allocate preventive resources to reduce the probabilities that the nodes are successfully compromised by the attacker. (ii) The compromised nodes undergo a recovery process, which can be sped up with the allocation of more reactive defense resources. Our results completely characterize the Nash equilibria of this game, revealing the defender’s optimal allocation of preventive versus reactive resources.\",\"PeriodicalId\":37235,\"journal\":{\"name\":\"IEEE Control Systems Letters\",\"volume\":\"8 \",\"pages\":\"2421-2426\"},\"PeriodicalIF\":2.4000,\"publicationDate\":\"2024-10-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Control Systems Letters\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10735383/\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"AUTOMATION & CONTROL SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Control Systems Letters","FirstCategoryId":"1085","ListUrlMain":"https://ieeexplore.ieee.org/document/10735383/","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"AUTOMATION & CONTROL SYSTEMS","Score":null,"Total":0}
Preventive-Reactive Defense Tradeoffs in Resource Allocation Contests
The connectivity enabled by modern computer networking technologies introduces vulnerabilities to adversarial attacks. Although it is ideal to be able to prevent all possible cyber attacks, this is not possible or feasible in practice and society must accept that attacks are inevitable. While many works study optimal security policies to minimize the chance of successful attacks, there are many unexplored territories. In this letter, we formulate and investigate a new problem, namely the tradeoff between the effort or resource that should be spent on preventing attacks (i.e., preventive defense) and the effort or resource that should be spent on recovering from attacks (i.e., reactive defense). We formulate the problem as a resource allocation game between the defender and the attacker, where they decide how to allocate resources to defend and attack a set nodes (e.g., computers), respectively. The game unfolds in two phases. (i) Allocate preventive resources to reduce the probabilities that the nodes are successfully compromised by the attacker. (ii) The compromised nodes undergo a recovery process, which can be sped up with the allocation of more reactive defense resources. Our results completely characterize the Nash equilibria of this game, revealing the defender’s optimal allocation of preventive versus reactive resources.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
