Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dynamic Network Security Deployment under Partial Information George Theodorakopoulos (EPFL) John S. Baras (UMD) Jean-Yves Le Boudec (EPFL) September 24,

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Dynamic Network Security Deployment under Partial Information George Theodorakopoulos (EPFL) John S. Baras (UMD) Jean-Yves Le Boudec (EPFL) September 24,"— Presentation transcript:

1 Dynamic Network Security Deployment under Partial Information George Theodorakopoulos (EPFL) John S. Baras (UMD) Jean-Yves Le Boudec (EPFL) September 24, 2008 2008 Allerton Conference 1

2 Security Products: Deploy or Not ? Network users decide to start and continue to use security products based on economic considerations Costs are rather perceived vs real Costs depend on information available to users at each decision time Costs depend on decisions of other users – a user’s likelihood to get infected depends on the security level employed by other users 2

3 Approach: Overview Combine malware spreading dynamics with a game theoretic approach (deploy security or not) Users can change decisions dynamically to maximize their perceived utility Results in an Evolutionary Game with Learning Find and characterize equilibrium points – dependence on speed of learning ‘network state’ Evolutionary Equilibria (EE) 3

4 Scenario Network with N users Total contact rate  N,  >0, ind. of N A pair makes (2  / (N-1)) contacts per unit time A user can be in one of 3 states: Susceptible (S ) Infected (I ) Protected (P ) S, I, P, percentages -- S + I + P =1 4

5 Scenario … Worm propagates in the network and infects susceptible users Infection lasts a random time -- exp. with parameter  An infected user infects other susceptible users he contacts After infection is over user becomes protected 5

6 Scenario … Non-infected users ( S or P ) can decide to stay in their current state or switch to the other state Decide whether and for how long to install protection Decision depends on Cost of protection c P > 0 Risk of getting infected; function of infection cost c I > c P > 0, and of percentage of infected users I (t ) Need to learn ( ‘estimate’ ) I (t ) I (t ) changes 6

7 Game Formulation Two types of players: Type 1 and Type 2 Type 1 is non-infected Type 2 is infected Players matched at random Probability { Type 1 player will meet a Type 2 player} = I 7

8 Game Formulation … Type 1 player vs Type 1 player game S P S (0, 0) (0, -c P ) P (-c P, 0)(-c P, -c P ) 8

9 Game Formulation … Type 1 player vs Type 2 player game (omit payoffs of Type 2 players) I S (-c I, --) P (-c P, --) 9

10 Game Theoretic Behavior User ‘pays’ c P when installing protection c I when getting infected ( 0 < c P < c I ) Threshold I*= (c P /c I ) When I (t ) (fraction of Infected) exceeds I* then: Best Response  S becomes P Otherwise: Best Response  P becomes S So: Learning the value of I (t ) is crucial 10

11 Learning How do S and P users learn the value of I (t ) ? Central monitor (e.g., base station) knows instantly I (t ) Each user contacts the monitor at rate  and learns I (t ) Users do not know the exact value of I (t ) at all times Field observations: users chose randomly between two alternatives – choice becomes more deterministic when utility differences larger 11

12 Smoothed Best Response Psychology research: When choosing between two similar alternatives, users randomize If the expected costs of infection and protection are close enough (I (t ) close to the threshold I*), users randomize p SP (I ): probability of S  P switch, when learning that I (t ) =I p PS (I ): similarly for P  S switch 12

13 Smoothed Best Response p SP (I ): piecewise linear sigmoid For  0 becomes pure best response 13

14 Epidemic Worm Propagation SIP model (similar to the classical SIR) Parameters S, I, P : fraction of Susceptible, Infected, Protected  : rate of contacts per node (classical: per pair)  : rate of disinfection (equivalently, the duration of the infection is ~ Exp(  )) 14

15 Complete Model Users can switch between S and P, and also learn I at rate   An evolutionary game on the simplex in  3  A switching dynamical system on the simplex in  3  Strong connections to ‘replicator dynamics’ Lie-algebraic conditions for equilibria, stability, periodic solutions 15

16 Results Equilibrium points and stability Point Exists always Stable when The condition means that,, so exponentially in  Nothing to worry about in this case: Some users go from S to I to P, then I goes to zero, and all the P switch to S (zero cost!) 16

17 Results … Point Exists when and Stable whenever it exists S = is independent of For, I increases, and P decreases If users learn fast that I (t ) < I*, they switch from P to S, and then get infected User selfishness increases total network cost ( ) 17

18 Results … Point Exists when and Stable whenever it exists : smaller solution of Always: So, is a tight upper bound for I 18

19 Conclusions Socially optimal strategy: “All users become P at the first sign of infection, and then switch to S when the infected have all become disinfected.” But not individually rational! Protection costs, and users prefer to risk a large loss (infection) rather than accept a small certain loss (protection). 19

20 Telling users the true state of the network increases the total network cost. We can show: Optimal for the operator: Conclusion

Download ppt "Dynamic Network Security Deployment under Partial Information George Theodorakopoulos (EPFL) John S. Baras (UMD) Jean-Yves Le Boudec (EPFL) September 24,"

Similar presentations

A Local Mean Field Analysis of Security Investments in Networks Marc Lelarge (INRIA-ENS) Jean Bolot (SPRINT) NetEcon 2008.

A Local Mean Field Analysis of Security Investments in Networks Marc Lelarge (INRIA-ENS) Jean Bolot (SPRINT) NetEcon 2008.
Chapter 17: Making Complex Decisions April 1, 2004.

Chapter 17: Making Complex Decisions April 1, 2004.
Network Security: an Economic Perspective Marc Lelarge (INRIA-ENS) currently visiting STANFORD TRUST seminar, Berkeley 2011.

Network Security: an Economic Perspective Marc Lelarge (INRIA-ENS) currently visiting STANFORD TRUST seminar, Berkeley 2011.
Ultimatum Game Two players bargain (anonymously) to divide a fixed amount between them. P1 (proposer) offers a division of the “pie” P2 (responder) decides.

Ultimatum Game Two players bargain (anonymously) to divide a fixed amount between them. P1 (proposer) offers a division of the “pie” P2 (responder) decides.
Price Of Anarchy: Routing

Price Of Anarchy: Routing
Game Theory Assignment For all of these games, P1 chooses between the columns, and P2 chooses between the rows.

Game Theory Assignment For all of these games, P1 chooses between the columns, and P2 chooses between the rows.
EPFL, Lausanne, Switzerland Márk Félegyházi Equilibrium Analysis of Packet Forwarding Strategies in Wireless Ad Hoc Networks – the Static Case Márk Félegyházi.

EPFL, Lausanne, Switzerland Márk Félegyházi Equilibrium Analysis of Packet Forwarding Strategies in Wireless Ad Hoc Networks – the Static Case Márk Félegyházi.
Fast Convergence of Selfish Re-Routing Eyal Even-Dar, Tel-Aviv University Yishay Mansour, Tel-Aviv University.

Fast Convergence of Selfish Re-Routing Eyal Even-Dar, Tel-Aviv University Yishay Mansour, Tel-Aviv University.
An Introduction to... Evolutionary Game Theory

An Introduction to... Evolutionary Game Theory
EC3224 Autumn Lecture #04 Mixed-Strategy Equilibrium

EC3224 Autumn Lecture #04 Mixed-Strategy Equilibrium
Social Networks 101 P ROF. J ASON H ARTLINE AND P ROF. N ICOLE I MMORLICA.

Social Networks 101 P ROF. J ASON H ARTLINE AND P ROF. N ICOLE I MMORLICA.
Markov Game Analysis for Attack and Defense of Power Networks Chris Y. T. Ma, David K. Y. Yau, Xin Lou, and Nageswara S. V. Rao.

Markov Game Analysis for Attack and Defense of Power Networks Chris Y. T. Ma, David K. Y. Yau, Xin Lou, and Nageswara S. V. Rao.
Game Theory Eduardo Costa. Contents What is game theory? Representation of games Types of games Applications of game theory Interesting Examples.

Game Theory Eduardo Costa. Contents What is game theory? Representation of games Types of games Applications of game theory Interesting Examples.
Using Game Theoretic Approach to Analyze Security Issues In Ad Hoc Networks Term Presentation Name: Li Xiaoqi, Gigi Supervisor: Michael R. Lyu Department:

Using Game Theoretic Approach to Analyze Security Issues In Ad Hoc Networks Term Presentation Name: Li Xiaoqi, Gigi Supervisor: Michael R. Lyu Department:
Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.

Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.
Bundling Equilibrium in Combinatorial Auctions Written by: Presented by: Ron Holzman Rica Gonen Noa Kfir-Dahav Dov Monderer Moshe Tennenholtz.

Bundling Equilibrium in Combinatorial Auctions Written by: Presented by: Ron Holzman Rica Gonen Noa Kfir-Dahav Dov Monderer Moshe Tennenholtz.
Robust Allocation of a Defensive Budget Considering an Attacker’s Private Information Mohammad E. Nikoofal and Jun Zhuang Presenter: Yi-Cin Lin Advisor:

Robust Allocation of a Defensive Budget Considering an Attacker’s Private Information Mohammad E. Nikoofal and Jun Zhuang Presenter: Yi-Cin Lin Advisor:
P.V. VISWANATH FOR A FIRST COURSE IN INVESTMENTS.

P.V. VISWANATH FOR A FIRST COURSE IN INVESTMENTS.
1 Computing Nash Equilibrium Presenter: Yishay Mansour.

1 Computing Nash Equilibrium Presenter: Yishay Mansour.
Maximum Likelihood We have studied the OLS estimator. It only applies under certain assumptions In particular,  ~ N(0, 2 ) But what if the sampling distribution.

Maximum Likelihood We have studied the OLS estimator. It only applies under certain assumptions In particular,  ~ N(0, 2 ) But what if the sampling distribution.

Similar presentations

Ads by Google