Towards High-Resolution Multi-Stage Security Games

Aron Laszka, Xenofon Koutsoukos, Yevgeniy Vorobeychik

Research output: Chapter in Book/Report/Conference proceedingChapter

1 Scopus citations

Abstract

In recent years, we have seen a large number of cyber-incidents, which demonstrated how difficult it is to prevent cyber-breaches when facing determined and sophisticated attackers. In light of this, it is clear that defenders need to look beyond the first lines of defense and invest not only into prevention, but also into limiting the impact of cyber-breaches. Thus, an effective cyber-defense must combine proactive defense, which aims to block anticipated attacks, with reactive defense, which responds to and mitigates perceived attacks (e.g., isolating and shutting down compromised components). However, planning defensive actions in anticipation of and in response to strategic attacks is a challenging problem. Prior work has introduced a number of game-theoretic security models for planning defensive actions, such as Stackelberg security games, but these models do not address the overarching problem of proactive and reactive defenses in sufficient detail. To bridge this gap, we introduce a modeling approach for building high-resolution multi-stage security games. We describe several approaches for modeling proactive and reactive defenses, consider key modeling choices and challenges, and discuss finding optimal defense policies. With our study, we aim to lay conceptual foundations for developing realistic models of cyber-security that researchers and practitioners can use for effective cyber-defense.

Original languageEnglish (US)
Title of host publicationAdvances in Information Security
PublisherSpringer New York LLC
Pages139-161
Number of pages23
DOIs
StatePublished - 2019

Publication series

NameAdvances in Information Security
Volume74
ISSN (Print)1568-2633

All Science Journal Classification (ASJC) codes

  • Information Systems
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'Towards High-Resolution Multi-Stage Security Games'. Together they form a unique fingerprint.

Cite this