Preventive and Reactive Cyber Defense Dynamics Is Globally Stable

The recently proposed cybersecurity dynamics approach aims to understand cybersecurity from a holistic perspective by modeling the evolution of the global cybersecurity state. These models describe the interactions between the various kinds of cyber attacks and the various kinds of cyber defenses that take place in complex networks. In this paper, we study a particular kind of cybersecurity dynamics caused by the interactions between two classes of attacks (called push-based attacks and pull-based attacks) and two classes of defenses (called preventive and reactive defenses). The dynamics was previously shown to be globally stable in a special regime of the parameter universe of a model with node-independent and edge-independent parameters, but little is known beyond this regime. In this paper, we prove that the dynamics is globally stable in the entire parameter universe of a more general model with node-dependent and edge-dependent parameters. This means that the dynamics always converges to a unique equilibrium. We also prove that the dynamics converges exponentially to the equilibrium except for a particular parameter regime, in which the dynamics converges polynomially. Since it is often difficult to compute the equilibrium, we propose bounds of the equilibrium and numerically show that these bounds are tighter than those proposed in the literature.

[1]  J. Yorke,et al.  A Deterministic Model for Gonorrhea in a Nonhomogeneous Population , 1976 .

[2]  Y. Moreno,et al.  Epidemic outbreaks in complex heterogeneous networks , 2001, cond-mat/0107267.

[3]  Jeffrey O. Kephart,et al.  Measuring and modeling computer virus prevalence , 1993, Proceedings 1993 IEEE Computer Society Symposium on Research in Security and Privacy.

[4]  Shouhuai Xu,et al.  Exploiting Trust-Based Social Networks for Distributed Protection of Sensitive Data , 2011, IEEE Transactions on Information Forensics and Security.

[5]  Kendrick,et al.  Applications of Mathematics to Medical Problems , 1925, Proceedings of the Edinburgh Mathematical Society.

[6]  Alessandro Vespignani,et al.  Epidemic dynamics and endemic states in complex networks. , 2001, Physical review. E, Statistical, nonlinear, and soft matter physics.

[7]  Shouhuai Xu,et al.  A Stochastic Model of Active Cyber Defense Dynamics , 2015, Internet Math..

[8]  Shouhuai Xu,et al.  A Stochastic Model of Multivirus Dynamics , 2012, IEEE Transactions on Dependable and Secure Computing.

[9]  Niels Provos,et al.  The Ghost in the Browser: Analysis of Web-based Malware , 2007, HotBots.

[10]  G. Sallet,et al.  Epidemiological Models and Lyapunov Functions , 2007 .

[11]  Shouhuai Xu,et al.  Characterizing the power of moving target defense via cyber epidemic dynamics , 2014, HotSoS '14.

[12]  Babak Hassibi,et al.  Global dynamics of epidemic spread over complex networks , 2013, 52nd IEEE Conference on Decision and Control.

[13]  Herbert W. Hethcote,et al.  The Mathematics of Infectious Diseases , 2000, SIAM Rev..

[14]  Shouhuai Xu,et al.  A Stochastic Model for Quantitative Security Analyses of Networked Systems , 2016, IEEE Transactions on Dependable and Secure Computing.

[15]  Alexander Grey,et al.  The Mathematical Theory of Infectious Diseases and Its Applications , 1977 .

[16]  Kevin D. Hoover,et al.  Idealizing Reduction: The Microfoundations of Macroeconomics , 2010 .

[17]  Donald F. Towsley,et al.  The effect of network topology on the spread of epidemics , 2005, Proceedings IEEE 24th Annual Joint Conference of the IEEE Computer and Communications Societies..

[18]  W. O. Kermack,et al.  A contribution to the mathematical theory of epidemics , 1927 .

[19]  Shouhuai Xu,et al.  Cyber Epidemic Models with Dependences , 2015, Internet Math..

[20]  Shouhuai Xu,et al.  A new approach to modeling and analyzing security of networked systems , 2014, HotSoS '14.

[21]  Piet Van Mieghem,et al.  The N-intertwined SIS epidemic network model , 2011, Computing.

[22]  George J. Pappas,et al.  Analysis and Control of Epidemics: A Survey of Spreading Processes on Complex Networks , 2015, IEEE Control Systems.

[23]  Christos Faloutsos,et al.  Epidemic thresholds in real networks , 2008, TSEC.

[24]  Z. Jing,et al.  GLOBAL ASYMPTOTIC BEHAVIOR IN SOME COOPERATIVE SYSTEMS OF FUNCTIONAL DIFFERENTIAL EQUATIONS , 2005 .

[25]  Shouhuai Xu,et al.  An Extended Stochastic Model for Quantitative Security Analysis of Networked Systems , 2012, Internet Math..

[26]  P. Van Mieghem,et al.  Virus Spread in Networks , 2009, IEEE/ACM Transactions on Networking.

[27]  Christos Faloutsos,et al.  Epidemic spreading in real networks: an eigenvalue viewpoint , 2003, 22nd International Symposium on Reliable Distributed Systems, 2003. Proceedings..

[28]  Peixuan Weng,et al.  Spreading speed and traveling waves for a multi-type SIS epidemic model , 2006 .

[29]  Bahman Gharesifard,et al.  Stability properties of infected networks with low curing rates , 2014, 2014 American Control Conference.

[30]  Alessandro Vespignani,et al.  Dynamical Processes on Complex Networks , 2008 .

[31]  Shouhuai Xu,et al.  Towards Quantifying the (In)Security of Networked Systems , 2007, 21st International Conference on Advanced Information Networking and Applications (AINA '07).

[32]  Jeffrey O. Kephart,et al.  Directed-graph epidemiological models of computer viruses , 1991, Proceedings. 1991 IEEE Computer Society Symposium on Research in Security and Privacy.

[33]  Yvo Desmedt,et al.  Threshold Cryptosystems , 1989, CRYPTO.

[34]  Shouhuai Xu,et al.  Cybersecurity dynamics , 2014, HotSoS '14.

[35]  N. Bailey,et al.  The mathematical theory of infectious diseases and its applications. 2nd edition. , 1975 .

[36]  T. Liggett Interacting Particle Systems , 1985 .

[37]  M. Hirsch Systems of Differential Equations that are Competitive or Cooperative II: Convergence Almost Everywhere , 1985 .

[38]  A. M'Kendrick Applications of Mathematics to Medical Problems , 1925, Proceedings of the Edinburgh Mathematical Society.

[39]  Shouhuai Xu,et al.  Emergent behavior in cybersecurity , 2014, HotSoS '14.

[40]  Alessandro Vespignani,et al.  Epidemic dynamics in finite size scale-free networks. , 2002, Physical review. E, Statistical, nonlinear, and soft matter physics.

[41]  Shouhuai Xu,et al.  Active cyber defense dynamics exhibiting rich phenomena , 2015, HotSoS.

[42]  Mark E. J. Newman,et al.  The Structure and Function of Complex Networks , 2003, SIAM Rev..

[43]  Bahman Gharesifard,et al.  Stability properties of infection diffusion dynamics over directed networks , 2014, 53rd IEEE Conference on Decision and Control.

[44]  A. J. Hall Infectious diseases of humans: R. M. Anderson & R. M. May. Oxford etc.: Oxford University Press, 1991. viii + 757 pp. Price £50. ISBN 0-19-854599-1 , 1992 .

[45]  C. Robinson Dynamical Systems: Stability, Symbolic Dynamics, and Chaos , 1994 .

[46]  Xiao-Qiang Zhao,et al.  Dynamical systems in population biology , 2003 .

[47]  Shouhuai Xu,et al.  Adaptive Epidemic Dynamics in Networks , 2013, ACM Trans. Auton. Adapt. Syst..