On Cyber Risk Management of Blockchain Networks: A Game Theoretic Approach

Open-access blockchains based on proof-of-work protocols have gained tremendous popularity for their capabilities of providing decentralized tamper-proof ledgers and platforms for data-driven autonomous organization. Nevertheless, the proof-of-work based consensus protocols are vulnerable to cyber-attacks such as double-spending. In this paper, we propose a novel approach of cyber risk management for blockchain-based service. In particular, we adopt the cyber-insurance as an economic tool for neutralizing cyber risks due to attacks in blockchain networks. We consider a blockchain service market, which is composed of the infrastructure provider, the blockchain provider, the cyber-insurer, and the users. The blockchain provider purchases from the infrastructure provider, e.g., a cloud, the computing resources to maintain the blockchain consensus, and then offers blockchain services to the users. The blockchain provider strategizes its investment in the infrastructure and the service price charged to the users, in order to improve the security of the blockchain and thus optimize its profit. Meanwhile, the blockchain provider also purchases a cyber-insurance from the cyber-insurer to protect itself from the potential damage due to the attacks. In return, the cyber-insurer adjusts the insurance premium according to the perceived risk level of the blockchain service. Based on the assumption of rationality for the market entities, we model the interaction among the blockchain provider, the users, and the cyber-insurer as a two-level Stackelberg game. Namely, the blockchain provider and the cyber-insurer lead to set their pricing/investment strategies, and then the users follow to determine their demand of the blockchain service. Specifically, we consider the scenario of double-spending attacks and provide a series of analytical results about the Stackelberg equilibrium in the market game.

[1]  Debraj Ray,et al.  Bureau for Research and Economic Analysis of DevelopmentInformal Insurance in Social Networks , 2005 .

[2]  Quanyan Zhu,et al.  A Bi-Level Game Approach to Attack-Aware Cyber Insurance of Computer Networks , 2017, IEEE Journal on Selected Areas in Communications.

[3]  Francisco Facchinei,et al.  Real and Complex Monotone Communication Games , 2012, IEEE Transactions on Information Theory.

[4]  Dieter Denneberg,et al.  Premium Calculation: Why Standard Deviation Should be Replaced by Absolute Deviation , 1990, ASTIN Bulletin.

[5]  Gerard Debreu,et al.  A Social Equilibrium Existence Theorem* , 1952, Proceedings of the National Academy of Sciences.

[6]  Aggelos Kiayias,et al.  The Bitcoin Backbone Protocol: Analysis and Applications , 2015, EUROCRYPT.

[7]  Björn Scheuermann,et al.  Bitcoin and Beyond: A Technical Survey on Decentralized Digital Currencies , 2016, IEEE Communications Surveys & Tutorials.

[8]  Xiaohong Huang,et al.  LNSC: A Security Model for Electric Vehicle and Charging Pile Management Based on Blockchain Ecosystem , 2018, IEEE Access.

[9]  Shaun S. Wang,et al.  Insurance pricing and increased limits ratemaking by proportional hazards transforms , 1995 .

[10]  Cyril Grunspan,et al.  Double spend races , 2017, International Journal of Theoretical and Applied Finance.

[11]  Jiaqi Yan,et al.  Overview of business innovations and research opportunities in blockchain and introduction to the special issue , 2016, Financial Innovation.

[12]  Franz J. Hauck,et al.  Design of a Privacy-Preserving Decentralized File Storage with Financial Incentives , 2017, 2017 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW).

[13]  Meni Rosenfeld,et al.  Analysis of Hashrate-Based Double Spending , 2014, ArXiv.

[14]  Mauro Conti,et al.  A Survey on Security and Privacy Issues of Bitcoin , 2017, IEEE Communications Surveys & Tutorials.

[15]  Gang Chen,et al.  Untangling Blockchain: A Data Processing View of Blockchain Systems , 2017, IEEE Transactions on Knowledge and Data Engineering.

[16]  S. Nakamoto,et al.  Bitcoin: A Peer-to-Peer Electronic Cash System , 2008 .

[17]  Fabio Martinelli,et al.  Cyber-insurance survey , 2017, Comput. Sci. Rev..

[18]  Iwao Sasase,et al.  A Novel Blockchain-Based Product Ownership Management System (POMS) for Anti-Counterfeits in the Post Supply Chain , 2017, IEEE Access.

[19]  Xu Chen,et al.  When Social Network Effect Meets Congestion Effect in Wireless Networks: Data Usage Equilibrium and Optimal Pricing , 2017, IEEE Journal on Selected Areas in Communications.

[20]  Konstantinos Psounis,et al.  On a way to improve cyber-insurer profits when a security vendor becomes the cyber-insurer , 2013, 2013 IFIP Networking Conference.

[21]  Aziz Mohaisen,et al.  Countering Double-Spending in Next-Generation Blockchains , 2018, 2018 IEEE International Conference on Communications (ICC).

[22]  Dusit Niyato,et al.  Joint pricing and security investment for cloud-insurance: A security interdependency perspective , 2018, 2018 IEEE Wireless Communications and Networking Conference (WCNC).

[23]  Michael Devetsikiotis,et al.  Blockchains and Smart Contracts for the Internet of Things , 2016, IEEE Access.

[24]  Robert J. Plemmons,et al.  Nonnegative Matrices in the Mathematical Sciences , 1979, Classics in Applied Mathematics.

[25]  Emin Gün Sirer,et al.  Bitcoin-NG: A Scalable Blockchain Protocol , 2015, NSDI.

[26]  Ghassan O. Karame,et al.  Double-spending fast payments in bitcoin , 2012, CCS.

[27]  Francis Bloch,et al.  Pricing in social networks , 2013, Games Econ. Behav..

[28]  Zhetao Li,et al.  Consortium Blockchain for Secure Energy Trading in Industrial Internet of Things , 2018, IEEE Transactions on Industrial Informatics.

[29]  Mehmet A. Orgun,et al.  A Proof-of-Trust Consensus Protocol for Enhancing Accountability in Crowdsourcing Services , 2019, IEEE Transactions on Services Computing.

[30]  Shaun S. Wang Premium Calculation by Transforming the Layer Premium Density , 1996, ASTIN Bulletin.

[31]  A. Ozdaglar,et al.  On the Uniqueness of Solutions for Nonlinear and Mixed Complementarity Problems , 2005 .

[32]  Renato Lo Cigno,et al.  Proof of networking: Can blockchains boost the next generation of distributed networks? , 2018, 2018 14th Annual Conference on Wireless On-demand Network Systems and Services (WONS).

[33]  Dongming Xu,et al.  A maturity model for blockchain adoption , 2016, Financial Innovation.

[34]  Dusit Niyato,et al.  Economic Analysis of Network Effects on Sponsored Content: A Hierarchical Game Theoretic Approach , 2017, GLOBECOM 2017 - 2017 IEEE Global Communications Conference.

[35]  Dusit Niyato,et al.  Decentralized Caching for Content Delivery Based on Blockchain: A Game Theoretic Perspective , 2018, 2018 IEEE International Conference on Communications (ICC).

[36]  Khashayar Kotobi,et al.  Blockchain-enabled spectrum access in cognitive radio networks , 2017, 2017 Wireless Telecommunications Symposium (WTS).