Presentation is loading. Please wait.

Presentation is loading. Please wait.

Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/10/25 1 Research Direction Introduction.

Published byJoseph Foster Modified over 9 years ago

Similar presentations

Presentation on theme: "Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/10/25 1 Research Direction Introduction."— Presentation transcript:

1 Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/10/25 1 Research Direction Introduction

2 Agenda 2011/10/25 2 Introduction Network Survivability Problem Description

3 Introduction 2011/10/25 3

4 Game theory 2011/10/25 4 Game theory is a way to analyze interaction among a group of rational agents who behave strategically. Game theory has been successfully applied in different areas as competition, biology, economics, political science, computer science, military strategy, and more.

5 Finitely repeated game 2011/10/25 5 In recent years, the game theory has been applied in lots of network security issues. In the real world, attackers and defenders frequently interact repeatedly over time. The interaction between attacker and defender could be viewed as an N-period game.

6 Non-cooperative game 2011/10/25 6 Games are classified into two major classes: cooperative games and non-cooperative games. In the context of information security, cyber attacker would not cooperate with network defender. X

7 Incomplete information 2011/10/25 7 In traditional non-cooperative games it is assumed that 1. The players are rational. 2. There are no enforceable agreements between players. 3. The players know all the data of the game. However, real-game situations may involve other types of uncertainty. The players may lack complete information about other players or themselves.

8 Sequential game 2011/10/25 8 Most past literature has focused on sequential games in which the defender moves first, since network defender will be able to deter cyber attacker or shift attack to unimportant target.

9 High availability 2011/10/25 9 Users want their systems, for example hospitals, airplanes or computers, to be ready to serve them at all times. High availability (HA) is a system design approach and associated service implementation that ensures a prearranged level of operational performance will be met during a contractual measurement period.

10 High availability 2011/10/25 10 High availability (HA) clusters operate by harnessing redundant computers in groups or clusters that provide continued service when system components fail. High availability (HA) clusters can sometimes be categorized into one of the following models: Active/active Active/passive High availability (HA) cluster implementations attempt to build redundancy into a cluster to eliminate single point of failure.

11 Network Survivability 2011/10/25 11

12 ADOD (Average Degree of Disconnectivity) 2011/10/25 12 DOD (Degree of Disconnectivity) Contest success function

13 DOD 2011/10/25 13 The DOD (Degree of Disconnectivity) metric could be used to measure the damage degree of network. Definition

14 DOD 2011/10/25 14 OD pairs = 12 34 route 1, 2 1, 3 1, 2, 4 (1, 3, 4) 2, 4, 3 (2, 1, 3) 2, 4 3, 4

15 DOD 2011/10/25 15 OD pairs = DOD = 3/6 12 34 routenumber of broken node 1, 21 1, 31 1, 2, 4 (1, 3, 4)1 2, 4, 3 (2, 1, 3)0 2, 40 3, 40

16 DOD 2011/10/25 16 OD pairs = DOD = 6/6 12 34 routenumber of broken node 1, 22 1, 31 1, 2, 4 (1, 3, 4)1 2, 4, 3 (2, 1, 3)1 2, 41 3, 40

17 DOD 2011/10/25 17 OD pairs = DOD = 10/6 12 34 routenumber of broken node 1, 22 1, 32 1, 2, 4 (1, 3, 4)2 2, 4, 3 (2, 1, 3)2 2, 41 3, 41

18 DOD 2011/10/25 18 OD pairs = DOD = 14/6 12 34 routenumber of broken node 1, 22 1, 32 1, 2, 4 (1, 3, 4)3 2, 4, 3 (2, 1, 3)3 2, 42 3, 42

19 DOD 2011/10/25 19 The larger number of the DOD value, the more damage degree of network would be.

20 Contest success function (CSF) 2011/10/25 20 Skaperdas, S., 1996. Contest success functions. Economic Theory 7, 283–290. Definition T:the attacker’s budget t:the defender’s budget m:contest intensity S:attack success probability

21 ADOD example 2011/10/25 21 Node statesAttack success probability (S)DODS*DOD 1, 2, 3, 4(1-S 1 )*(1-S 2 )*(1-S 3 )*(1-S 4 )00 1, 2, 3, 4S 1 *(1-S 2 )*(1-S 3 )*(1-S 4 )3/63/6*S 1 *(1-S 2 )*(1- S 3 )*(1-S 4 ) … 1, 2, 3, 4S 1 *S 2 *S 3 *S 4 14/614/6*S 1 *S 2 *S 3 *S 4

22 ADOD (Average Degree of Disconnectivity) 2011/10/25 22 The larger number of the Average DOD value is, the more damage degree of the network would be.

23 Problem Description 2011/10/25 23

24 Defender versus Attacker 2011/10/25 24 DefenderAttacker Information1. Common knowledgeThe information is known to both. 2. Defender’s private information (ex. node’s valuation, node’s type, and network topology) The defender knew all of it. The attacker knew a part of it. 3. The defender’s other information (ex. system vulnerabilities) The defender did not know it before the game starts. The attacker knew a part of it.

25 Defender versus Attacker 2011/10/25 25 DefenderAttacker Budget1. Based on the importance of node Defense.Attack. 2. On each nodeReleasing message.Updating information. 3. Reallocated or recycledYes. But the defender needed extra cost. No. 4. RewardNo.Yes. If the attacker compromised a node, the node’s resource could be controlled by the attacker before the defender has not repaired it yet. 5. Repaired nodeYes.No. 6. Resource accumulationYes. But the resource needed to be discounted.

26 Defender versus Attacker 2011/10/25 26 DefenderAttacker Immune benefit Yes. The defender could update information about system vulnerabilities after attacks. No. RationalityFull or bounded rationality.

27 Objective 2011/10/25 27 The network survivability is measured by ADOD. The game has two players: an attacker (he, A) and a defender (she, D). Defender Objective - minimize the damage of the network (ADOD). Budget Constraint -  deploying the defense budget in nodes  repairing the compromised node  releasing message in nodes Attacker Objective - maximize the damage of the network (ADOD). Budget Constraint –  deploying the attack budget in nodes  updating information

28 Defender’s characteristics- Private information (Defender’s view) 2011/10/25 28 The defender has private information, including each node’s valuation, each node’s type and network topology.

29 2011/10/25 29 The defender has private information, including each node’s valuation, each node’s type and network topology. Defender’s characteristics- Private information (Attacker’s view)

30 Defender’s characteristics 2011/10/25 30 Effective resources: t m. Resource reallocation, recycling and accumulation. Each node’s type. Bounded rationality. High availability system.

31 Attacker’s characteristics 2011/10/25 31 Attacker’s private information: attacker’s budget and something defender did not know. Effective resources: T m. Resource growth: attacker could increase resources when the attacker compromised network nodes. Resource accumulation. Bounded rationality.

32 Defender’s action 2011/10/25 32 In each round, the defender moves first, determines strategy and chooses message which may be truth, deception or secrecy to each node.

33 Message releasing 2011/10/25 33 Message releasing can be classified into two types.  A node’s information could be divided into different parts to release message by the defender.  The defender could release a node’s defensive state as a message to the attacker.

34 Message releasing- type 1 2011/10/25 34 The defender could choose a part of information from a node according to his strategy which released truthful message, deceptive message or secrecy.

35 Message releasing- type 1 example 2011/10/25 35 The defender chooses : 1. Truthful message if and only if message = actual information; 2. Secrecy if and only if message is secret; 3. Deceptive message if and only if message ≠ actual information. Defender 1.OS: Linux 2.FTP: Filezilla server 3.DB: MYSQL Cost: Deceptive message > Secrecy > Truthful message Message 1.OS: Linux 2.FTP: Filezilla server 3.DB: MYSQL Message 1.OS: Win 7 2.FTP: Filezilla server 3.DB: unknown

36 Message releasing- type 1 scenario (Defender's view in each round ) 2011/10/25 36 The defender chose the part of information to release truth message The defender chose the part of information to use deception Keep the node’s part of information secret

37 2011/10/25 37 The defender chose the part of information to release truth message The defender chose the part of information to use deception Keep the node’s part of information secret Message releasing- type 1 scenario (Defender's view in each round )

38 Message releasing- type 2 2011/10/25 38 The defender released different message, which are truth, deception or secrecy, on each node as a mixed strategy.

39 Message releasing- type 2 scenario (Defender's view in each round ) 2011/10/25 39 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret

40 Message releasing- type 2 scenario (Defender's view in each round ) 2011/10/25 40 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret

41 Message releasing- type 2 scenario (Defender's view in each round ) 2011/10/25 41 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret

42 Message releasing- type 2 scenario (Defender's view in each round ) 2011/10/25 42 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret

43 Message releasing- type 2 scenario (Attacker's view in each round ) 2011/10/25 43 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret

44 The effect of deception/secrecy 2011/10/25 44 The effect of deception or secrecy would be discounted if the attacker knew defender’s partial private information.

45 The effect of deception/secrecy 2011/10/25 45 The effect of deception or secrecy would be zero if the attacker knew something that the defender did not know.

46 Immune benefit 2011/10/25 46 Although the attacker knows something that the defender did not know, the defender can update information after observing the result of each round’s contest. After the defender updated information, she had immune benefit which means that the attacker was unable to use identical attack.

47 Defender’s resources 2011/10/25 47 From the view of the defender, the budget could be reallocated or recycled but the discount factor is also considered. The defender could accumulate resources to decrease attack success probability to defend network nodes in next time.

48 Defender’s resources example – type 2 scenario 2011/10/25 48 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret Defender Recycled Reallocated

49 Attacker’s information 2011/10/25 49 The attacker knows only partial network topology. The attacker could update information after observing the result of each round’s contest and defender’s messages.

50 Attacker’s resources 2011/10/25 50 The attacker could accumulate experience to increase attack success probability to compromise network nodes in next time. The attacker could increase resources when the attacker compromised network nodes. i In the first round, the attacker put 3 units of attack budget to collect information of node i. In the second round, the attacker put 6 units of attack budget to attack node i. Total attack resource= 3*discount rate +6

51 Attacker’s resources example – type 2 scenario 2011/10/25 51 The defender’s actual strategy: Defense resource on node i The defender’s message: Defense resource on node i Keep defender’s actual strategy secret

52 Network topology 2011/10/25 52 Consider a complex system with n nodes in series- parallel. A node consists of M components which may be different components or the same. (M ≥ 1)

53 Network topology 2011/10/25 53 A node’s composition could be classified into two types.  A node with backup component  A k-out-of-m node

54 Network topology 2011/10/25 54 The relationship between nodes could be classified into three types.  Independent A node can function solely.

55 Network topology 2011/10/25 55 The relationship between nodes could be classified into three types.  Dependent When a node was destroyed, the node dependent on the destroyed node was also destroyed.

56 Network topology 2011/10/25 56 The relationship between nodes could be classified into three types.  Interdependent When a node was destroyed, the node interdependent on the destroyed node was also destroyed and vice versa.

57 2011/10/25 57

58 Thanks for your listening. 2011/10/25 58

Download ppt "Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/10/25 1 Research Direction Introduction."

Similar presentations

The Basics of Game Theory

The Basics of Game Theory
Research Direction Introduction Advisor: Frank, Yeong-Sung Lin Presented by Hui-Yu, Chung.

Research Direction Introduction Advisor: Frank, Yeong-Sung Lin Presented by Hui-Yu, Chung.
Collaboration Mechanisms in SOA based MANETs. Introduction Collaboration implies the cooperation between the nodes to support the proper functioning of.

Collaboration Mechanisms in SOA based MANETs. Introduction Collaboration implies the cooperation between the nodes to support the proper functioning of.
3. Basic Topics in Game Theory. Strategic Behavior in Business and Econ Outline 3.1 What is a Game ? 3.1.1 The elements of a Game 3.1.2 The Rules of the.

3. Basic Topics in Game Theory. Strategic Behavior in Business and Econ Outline 3.1 What is a Game ? The elements of a Game The Rules of the.
What is Game Theory? It is part of the theory of purposeful behavior commonly known as rational choice theory. It specifically focuses on situations with.

What is Game Theory? It is part of the theory of purposeful behavior commonly known as rational choice theory. It specifically focuses on situations with.
Chapter 14 Infinite Horizon 1.Markov Games 2.Markov Solutions 3.Infinite Horizon Repeated Games 4.Trigger Strategy Solutions 5.Investing in Strategic Capital.

Chapter 14 Infinite Horizon 1.Markov Games 2.Markov Solutions 3.Infinite Horizon Repeated Games 4.Trigger Strategy Solutions 5.Investing in Strategic Capital.
An Introduction to... Evolutionary Game Theory

An Introduction to... Evolutionary Game Theory
© 2015 McGraw-Hill Education. All rights reserved. Chapter 15 Game Theory.

© 2015 McGraw-Hill Education. All rights reserved. Chapter 15 Game Theory.
Game Theory: Inside Oligopoly

Game Theory: Inside Oligopoly
Game Theory Eduardo Costa. Contents What is game theory? Representation of games Types of games Applications of game theory Interesting Examples.

Game Theory Eduardo Costa. Contents What is game theory? Representation of games Types of games Applications of game theory Interesting Examples.
Game Theory Game theory is an attempt to model the way decisions are made in competitive situations. It has obvious applications in economics. But it.

Game Theory Game theory is an attempt to model the way decisions are made in competitive situations. It has obvious applications in economics. But it.
Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/9/13 Modeling secrecy and deception in a multiple- period attacker–defender signaling game 1.

Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/9/13 Modeling secrecy and deception in a multiple- period attacker–defender signaling game 1.
Game-Theoretic Approaches to Critical Infrastructure Protection Workshop on Statistics and Counterterrorism November 20, 2004 Vicki Bier University of.

Game-Theoretic Approaches to Critical Infrastructure Protection Workshop on Statistics and Counterterrorism November 20, 2004 Vicki Bier University of.
Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/3/07 Defending simple series and parallel systems with imperfect false targets R. Peng, G. Levitin,

Advisor: Yeong-Sung Lin Presented by I-Ju Shih 2011/3/07 Defending simple series and parallel systems with imperfect false targets R. Peng, G. Levitin,
Using Game Theoretic Approach to Analyze Security Issues In Ad Hoc Networks Term Presentation Name: Li Xiaoqi, Gigi Supervisor: Michael R. Lyu Department:

Using Game Theoretic Approach to Analyze Security Issues In Ad Hoc Networks Term Presentation Name: Li Xiaoqi, Gigi Supervisor: Michael R. Lyu Department:
Dinker Batra CLUSTERING Categories of Clusters. Dinker Batra Introduction A computer cluster is a group of linked computers, working together closely.

Dinker Batra CLUSTERING Categories of Clusters. Dinker Batra Introduction A computer cluster is a group of linked computers, working together closely.
Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.

Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.
Network Security An Economics Perspective IS250 Spring 2010 John Chuang.

Network Security An Economics Perspective IS250 Spring 2010 John Chuang.
Robust Allocation of a Defensive Budget Considering an Attacker’s Private Information Mohammad E. Nikoofal and Jun Zhuang Presenter: Yi-Cin Lin Advisor:

Robust Allocation of a Defensive Budget Considering an Attacker’s Private Information Mohammad E. Nikoofal and Jun Zhuang Presenter: Yi-Cin Lin Advisor:
Lecture 1 - Introduction 1.  Introduction to Game Theory  Basic Game Theory Examples  Strategic Games  More Game Theory Examples  Equilibrium  Mixed.

Lecture 1 - Introduction 1.  Introduction to Game Theory  Basic Game Theory Examples  Strategic Games  More Game Theory Examples  Equilibrium  Mixed.

Similar presentations

Ads by Google