论文信息 - Proactive Population-Risk Based Defense Against Denial of Cyber-Physical Service Attacks

Proactive Population-Risk Based Defense Against Denial of Cyber-Physical Service Attacks

While the Internet of things (IoT) promises to improve areas such as energy efficiency, health care, and transportation, it is highly vulnerable to cyberattacks. In particular, DDoS attacks work by overflowing the bandwidth of a server. But many IoT devices form part of cyber-physical systems (CPS). Therefore, they can be used to launch a "physical" denial-of-service attack (PDoS) in which IoT devices overflow the "physical bandwidth" of a CPS. In this paper, we quantify the population-based risk to a group of IoT devices targeted by malware for a PDoS attack. To model the recruitment of bots, we extend a traditional game-theoretic concept and create a "Poisson signaling game." Then we analyze two different mechanisms (legal and economic) to deter botnet recruitment. We find that 1) defenders can bound botnet activity and 2) legislating a minimum level of security has only a limited effect, while incentivizing active defense can decrease botnet activity arbitrarily. This work provides a quantitative foundation for designing proactive defense against PDoS attacks.

Quanyan Zhu | Jeffrey Pawlick | Quanyan Zhu | J. Pawlick

[1] Hamed Mohsenian Rad,et al. Distributed Internet-Based Load Altering Attacks Against Smart Power Grids , 2011, IEEE Transactions on Smart Grid.

[2] Roger B. Myerson,et al. Population uncertainty and Poisson games , 1998, Int. J. Game Theory.

[3] Hamed Mohsenian Rad,et al. Dynamic load altering attacks in smart grid , 2015, 2015 IEEE Power & Energy Society Innovative Smart Grid Technologies Conference (ISGT).

[4] R. Kirk. CONVENTION: A PHILOSOPHICAL STUDY , 1970 .

[5] Maurizio Tomasella,et al. Vision and Challenges for Realising the Internet of Things , 2010 .

[6] Murat Kantarcioglu,et al. A Game-Theoretical Approach for Finding Optimal Strategies in a Botnet Defense Model , 2010, GameSec.

[7] Quanyan Zhu,et al. Deception by Design: Evidence-Based Signaling Games for Network Defense , 2015, WEIS.

[8] J. Sobel,et al. STRATEGIC INFORMATION TRANSMISSION , 1982 .

[9] Chase Qishi Wu,et al. On modeling and simulation of game theory-based defense mechanisms against DoS and DDoS attacks , 2010, SpringSim.

[10] Sandipan Mishra,et al. 17-2:Invited Paper: Advanced Sensing and Control in the Smart Conference Room at the Center for Lighting Enabled Systems and Applications , 2016 .

[11] Roger B. Myerson,et al. Large Poisson Games , 2000, J. Econ. Theory.