论文信息 - Game-Theoretic Algorithms for Optimal Network Security Hardening Using Attack Graphs

Game-Theoretic Algorithms for Optimal Network Security Hardening Using Attack Graphs

In network security hardening a network administrator may need to use limited resources (such as honeypots) to harden a network against possible attacks. Attack graphs are a common formal model used to represent possible attacks. However, most existing works on attack graphs do not consider the reactions of attackers to different defender strategies. We introduce a game-theoretic model of the joint problem where attacker's strategies are represented using attack graphs, and defender's strategies are represented as modifications of the attack graph. The attack graphs we use allow for sequential attack actions with associated costs and probabilities of success/failure. We present an algorithm for an computing attack policy that maximizes attacker's expected reward and empirical results demonstrating our methods on a case study network.

[1] Sushil Jajodia,et al. Measuring Security Risk of Networks Using Attack Graphs , 2010, Int. J. Next Gener. Comput..

[2] Viliam Lisý,et al. Computing Optimal Policies for Attack Graphs with Action Failures and Costs , 2014, STAIRS.

[3] Juliane Hahn,et al. Security And Game Theory Algorithms Deployed Systems Lessons Learned , 2016 .

[4] L. Spitzner,et al. Honeypots: Tracking Hackers , 2002 .

[5] Russell Greiner,et al. Finding optimal satisficing strategies for and-or trees , 2006, Artif. Intell..

[6] Xinming Ou,et al. A scalable approach to attack graph generation , 2006, CCS '06.

[7] J. Homer. A Sound and Practical Approach to Quantifying Security Risk in Enterprise Networks ∗ , 2009 .

[8] Somesh Jha,et al. Automated generation and analysis of attack graphs , 2002, Proceedings 2002 IEEE Symposium on Security and Privacy.