Wei Sun,Xiangwei Kong,Dequan He,Xingang You

DOI: https://doi.org/10.1109/ISECS.2008.147

2008-01-01

Abstract:The purpose of this paper is to resolve information security problem in the mobile electronic commerce industry chain. We analyze information security based on evolutionary game theory. In this paper, we set up the information security game model with penalty parameter, calculate replicator dynamics, and analyze the evolutionary stable strategy of the game model. The result reveals that reducing the investment cost is the key factor to promote information security investment. If this condition can not be satisfied, the regulation of penalty parameter will help to promote the investment. The research method in this paper provides a new thought for the solution of information security in the mobile electronic commerce chain.

Ming Zhao,Jinqiang Ren,Huiping Sun,Suming Li,Zhong Chen

DOI: https://doi.org/10.1109/icycs.2008.226

2008-01-01

Abstract:In ubiquitous computing environment, resources become invisible, heterogeneous and anywhere. Traditional access control mechanism could not handle such dynamic and complex environment. In our proposed work, we view access control mechanism as a non-cooperative game. Thus, a game theoretic model for access control has been proposed to assist such mechanism. Different from traditional one, which depended on complex policies for decision-making, our model uses game theory to evaluate all possible results and select the most expected one as final decision. In the end, a practical example has been presented and its result shows that our access control model is more suitable for nowadays dynamic access control environment.

Shengbing Zhang,Wandong Cai,Yongjun Li

DOI: https://doi.org/10.3969/j.issn.1000-2758.2011.04.028

2011-01-01

Xibei Gongye Daxue Xuebao/Journal of Northwestern Polytechnical University

Abstract:Aim: The introduction of the full paper discusses what we believe to be the shortcomings of existing access control methods and then proposes the research metioned in the title. Section 1 , 2 and 3 explain our game-theory based access control method and evaluate it with an example. Section 1 is entitled the confidence model of social network. Section 2 is entitled the game-theory based strategy for access control of social network; its core consists of: (1) the definitions of six symbols for game-theory based parameters; (2) the derivation and analysis of game-theory based payoff matrix of requestors and that of authorized users. Section 3 presents an example, whose results are presented in Table 1 and Fig. 1; there are five confidence levels and six game-theory based parameters whose symbols have been defined previously; these results and their analysis show preliminarily that our game-theory based access control method is indeed suitable for social network.

He Wei,Chunhe Xia,Haiquan Wang,Zhang Cheng,Ji Yi

DOI: https://doi.org/10.1109/csse.2008.1651

2008-01-01

Abstract:How to quantify the threat probability in network security risk assessment is an important problem to be solved. Most of the existing methods tend to consider the attacker and defender separately. However, the decision to perform the attack is a trade-off between the gain from a successful attack and the possible consequences of detection; meanwhile, the defender’s security strategy depends mostly on the knowledge of the intentions of the attacker. Therefore, ignoring the connections between the attacker and defender’s decisions does not correspond to reality. Game theory is the study of the ways in which strategic interactions among rational players produce outcomes with respect to the utilities of those players. In this paper, a novel Game Theoretical Attack-Defense Model (GTADM) which quantifies the probability of threats is proposed in order to construct a risk assessment framework. According to the cost-benefit analysis, we define the method of formulating the payoff matrix; the equilibrium of the model is also analyzed. In the end, a simple scenario is presented to illustrate the usage of GTADM in the risk assessment framework to show its efficiency.

Yanbo Huang,Ming Zhang,Yong Shang

DOI: https://doi.org/10.1109/vtc2021-spring51267.2021.9448726

2021-01-01

Abstract:In the background of ultra-dense network (UDN), with the increasingly densification of network structure, the distance between base stations becomes closer, and one user may be in the service range of multiple small base stations, thus forming a user-centered virtual cell system. In this system, with more and more unlimited devices accessed to the network, spectrum resources are becoming more and more tense. Compared with orthogonal multiple access (OMA), non-orthogonal multiple access (NOMA) can make better use of spectrum resources to meet the access requests of more access devices. In recent years, more and more attentions are drawn to information security issues, so it is important to use physical layer security (PLS) technology to ensure the safe access of users in the presence of eavesdropping nodes. This paper discusses the user access issue in UDN considering PLS and NOMA, and proposes a non-cooperative game theory method to maximize sum of the User's communication rate in the system through multi-round dynamic games. Through simulation analysis, we proved the effectiveness of our proposed method.

Yan Li,Jinqiang Ren,Huiping Sun,Haining Luo,Zhong Chen

DOI: https://doi.org/10.1007/978-3-642-10240-0_8

2009-01-01

Abstract:With development of grid technology, sensitive data protection becomes a difficult task for accesses from heterogeneous domains. Moreover, anonymity and unknown peers worsen security problems. Traditional access control mechanisms are not suitable to distributed environment. Several models and mechanisms make use of trust evaluation to assist access control decision. But few explicitly consider trust and risk as two separate factors which affect interactions between peers. In this paper, we present an access control mechanism which considers both trust and risk as two vital parameters. We also introduce static game model with incomplete information to analyze the optimal decision. In addition, a new model of trust evaluation is proposed to represent the confidence in the peer. To appease people's anxiety about loss, a model of risk assessment is also presented to indicate impacts on resources. At the end of this paper, to describe how our mechanism works, a scenario is provided.

Suguo Du,Xiaolong Li,Junbo Du,Haojin Zhu

DOI: https://doi.org/10.1007/s12083-012-0127-9

IF: 3.488

2012-01-01

Peer-to-Peer Networking and Applications

Abstract:Recently, there is an increasing interest in Security and Privacy issues in Vehicular ad hoc networks (or VANETs). However, the existing security solutions mainly focus on the preventive solutions while lack a comprehensive security analysis. The existing risk analysis solutions may not work well to evaluate the security threats in vehicular networks since they fail to consider the attack and defense costs and gains, and thus cannot appropriately model the mutual interaction between the attacker and defender. In this study, we consider both of the rational attacker and defender who decide whether to launch an attack or adopt a countermeasure based on its adversary's strategy to maximize its own attack and defense benefits. To achieve this goal, we firstly adopt the attack-defense tree to model the attacker's potential attack strategies and the defender's corresponding countermeasures. To take the attack and defense costs into consideration, we introduce Return On Attack and Return on Investment to represent the potential gain from launching an attack or adopting a countermeasure in vehicular networks. We further investigate the potential strategies of the defender and the attacker by modeling it as an attack-defense game. We then give a detailed analysis on its Nash Equilibrium. The rationality of the proposed game-theoretical model is well illustrated and demonstrated by extensive analysis in a detailed case study.

XiaoLin Cui,Xiaobin Tan,Yong Zhang,Hongsheng Xi

DOI: https://doi.org/10.1109/CSSE.2008.949

2008-01-01

Abstract:Risk assessment is a very important tool to acquire a present and future security status of the network information system. Many risk assessment approaches consider the present system security status, while the future security status, which also has an impact on assessing the system risk, is not taken into consideration. In this paper we propose a novel risk assessment model based on Markov game theory. In this model, all of the possible risk in the future will impact on the present risk assessment. The farther away from now, the smaller impact on the risk assessment it has. After acquiring the system security status, we proposed an automatic generated reinforcement scheme which will provide a great convenience to the system administrator. A software tool is developed to demonstrate the performance of the risk assessment of a network information system and a simulation example shows the effectiveness of the proposed model. © 2008 IEEE.

Yuhuan Jiang,Guanding Yu,Rui Yin

DOI: https://doi.org/10.1109/WOCC.2013.6676372

2013-01-01

Abstract:Small cell deployment can significantly enhance the system performance by increasing the network throughput and reducing the overall energy consumptions. In this paper, we consider the problem of co-tier interference mitigation among Home Base Stations (HeNBs) in small cell overlaid macrocell network. A genetic algorithm based user access control scheme is proposed for downlink open access small cell networks with the objective of optimizing the overall system throughput. The performance of the proposed algorithm is evaluated and compared. Simulation results demonstrate that the proposed access control scheme is capable of improving the system performances, in terms of both system throughput and energy efficiency.

Meng Xianghong,Wang Xiaoli

DOI: https://doi.org/10.4028/www.scientific.net/amm.446-447.1625

2013-01-01

Applied Mechanics and Materials

Abstract:The interactions between attackers and network administrator are modeled as a non-zero-sum dynamic game with incomplete information. Strategies taken by offenders and defenders are dynamic game processes which are mutually dependable and constantly repeated. This paper uses game theory to analyze the model and process of offense and defense counterwork, and suggests that information security problems can be studied from game theory's point of view.

Jingwei LIU,Jingju LIU,Yuliang LU,Bin YANG

2017-01-01

Journal of Computer Applications

Abstract:Game theory is a mathematical theory and method to study the phenomenon of struggle or competition.It has become a hot spot of network security research in the application of game theory to the study of network security situation awareness.This paper reviewed the general research methods of network situation awareness and their shortcomings,analyzed the game features of network security,gave the network security situation game model,discussed the application of game theory in the network security situation awareness and analyzed its advantages and disadvantages,pointed out some possible research directions in the future.

Binbin Liu

DOI: https://doi.org/10.1088/1742-6596/2037/1/012126

2021-09-01

Journal of Physics: Conference Series

Abstract:At present, network security is a problem that needs to be solved urgently in the current network era. In order to reduce the loss caused by network security threats, and also use limited computer resources to select the best defense strategy, a set of network attack and defense game models are designed to identify the situation of network security threats. Aiming at the unstable problem of the security quantification process of traditional network node information, a network security threat situation identification based on the offensive and defensive game model is proposed. First, build an offensive and defensive game model, design the corresponding situation identification strategy, and calculate the overall utility and expected output of both offensive and defensive parties while clarifying the changes in the authority of both sides during the offensive and defensive process. This paper takes the offensive and defensive game model as the theoretical basis of the research, uses the algorithm as the auxiliary research, and integrates its important content to analyze and research the optimization of the algorithm to improve the network security threat situation identification. This paper uses the classic offensive and defensive game model as the research object to identify the threat situation of network security. In the process of selecting the offensive and defensive game model, it is necessary to have a better grasp of the relevant algorithms. This article introduces the offensive and defensive game model into the network security threat situation identification, and on this basis, it deeply discusses the applicability and effectiveness of the offensive and defensive game model in the complex network security threat situation identification, and provides better for the establishment of future network security systems. Reference. The experimental results show that this study is effective and feasible in the offensive and defensive game model in the network security threat situation identification. It should be noted that in the defense process, the probability of success and the degree of damage of the attack path must be grasped to ensure that the optimal offensive and defensive decision-making meets the actual needs of network security.

C Cao,J Lu

DOI: https://doi.org/10.1109/icdcsw.2005.19

2005-01-01

Abstract:To solve the security issues in a mobile agent system, the access control is always employed. Existing access control models enable the agent's identity, trust and other information to influence the security decisions. We argue that the path, which a mobile agent travels along, should be taken into consideration and affect what the agent can do dynamically. An access control model is proposed in this paper which captures the path history of the agent and reaches a decision according to both whether the path matches a path pattern set and whether the path can follow a host patch set. The flexibility of this model is shown and some issues in implementing such a model are discussed as well.

Kavita Kumari,Murtuza Jadliwala,Anindya Maiti,Mohammad Hossein Manshaei

DOI: https://doi.org/10.48550/arXiv.1904.13352

2019-05-01

Abstract:Abuse of zero-permission sensors on-board mobile and wearable devices to infer users' personal context and information is a well-known privacy threat that has received significant attention. Efforts towards protection mechanisms that prevent or limit the success of such threats, however, have been ad-hoc so far and have primarily focused on designing threat-specific customized defense mechanisms. Such approaches are not very practical, as evident from their limited adoption within major mobile/wearable operating systems. In the end, it is clear that all privacy threats that take advantage of unrestricted access to zero-permission sensors can be prevented if access to these sensors is regulated. However, due to the dynamic nature of sensor usage and requirements of different mobile applications, design of such access control mechanisms is not trivial. To effectively design an automated mobile defense mechanism that can dynamically measure the threat level of different sensor access requests from different applications and appropriately block suspicious requests, the problem of zero-permission sensor access needs to be first formally defined and analyzed. This paper accomplishes the above objective by employing game theory, specifically, signaling games, to analytically model the sensor access scenario for mobile applications, including, formalizing sensor access strategies of mobile applications and defense strategies of the on-board defense mechanism and the associated costs and benefits. Within the confines of a formal and practical game model, the paper then outlines conditions under which equilibria can be achieved between entities (applications and defense mechanism) with conflicting goals. The game model is further analyzed using numerical simulations, and also extended in the form of a repeated signaling game.

Computer Science and Game Theory,Cryptography and Security

Zemin Sun,Yanheng Liu,Jian Wang,Fang Mei,Weiwen Deng,Yuming Ge

DOI: https://doi.org/10.1109/tvt.2019.2899647

IF: 6.8

2019-01-01

IEEE Transactions on Vehicular Technology

Abstract:The restricted resources of mobile wireless networks such as limited bandwidth have resulted in stringent requirements on the available quality of service (QoS). To enhance the communication performance, mobile nodes attempt to optimize the available bandwidth of wireless networks, which, however, makes them vulnerable to the malicious attacks of adversaries owing to the open and mobile context. Furthermore, improving the security level of the communication consumes bandwidth and thus degrades the communication quality. In order to harmonize the QoS and security, in this paper, the two conflicting terms “communication player” and “security player” are considered as two individual players and are balanced using game theory. Furthermore, we construct a non-cooperative game model, wherein the utilities of the communication player and security player are maximized by controlling the number of nodes transmitted and the length of hash, respectively. We formulate the utility functions of the communication player with respect to the throughput as well as the security level of the Merkle tree for the security player. This paper considers complete information game and incomplete information game, for which we theoretically determine the pure strategy Nash equilibrium and the pure strategy Bayesian Nash equilibrium, respectively. Extensive numerical calculations are performed to comprehensively investigate the utilities of each player and the Nash equilibrium for various combinations of the concerned parameters. The results show that the presented theoretical game approach enables a mobile node to adaptively perform specific actions based on the derived Nash equilibrium. With the obtained Nash equilibrium values, both communication player's and security player's utilities reach to the maximum so that satisfactory communication quality can be realized without compromising the security.

Liang Liu,Cheng Huang,Yong Fang,Zhenxue Wang

DOI: https://doi.org/10.3837/tiis.2019.10.024

2019-01-01

KSII Transactions on Internet and Information Systems

Abstract:In the process of constructing the traditional offensive and defensive game theory model, these are some shortages for considering the dynamic change of security risk problem. By analysing the critical indicators of the incomplete information game theory model, incomplete information attack and defense game theory model and the mathematical engineering method for solving Bayes-Nash equilibrium, the risk-averse income function for information assets is summarized as the problem of maximising the return of the equilibrium point. To obtain the functional relationship between the optimal strategy combination of the offense and defense and the information asset security probability and risk probability. At the same time, the offensive and defensive examples are used to visually analyse and demonstrate the incomplete information game and the Harsanyi conversion method. First, the incomplete information game and the Harsanyi conversion problem is discussed through the attack and defense examples and using the game tree. Then the strategy expression of incomplete information static game and the engineering mathematics method of Bayes-Nash equilibrium are given. After that, it focuses on the offensive and defensive game problem of unsafe information network based on risk aversion. The problem of attack and defense is obtained by the issue of maximizing utility, and then the Bayes-Nash equilibrium of offense and defense game is carried out around the security risk of assets. Finally, the application model in network security penetration and defense is analyzed by designing a simulation example of attack and defense penetration. The analysis results show that the constructed income function model is feasible and practical.

LIN Chuang,FENG Fu-Jun,LI Jun-Shan

DOI: https://doi.org/10.1360/jos180955

2007-01-01

Abstract:Access control is an important technology for system security, and its mechanism is different for different networks. This paper first introduces the characteristics and applications of three traditional access control policies which are DAC (discretionary access control), MAC (mandatory access control) and RBAC (role-based access control), introduces the UCON (usage control) model, and then analyzes access control technology and current researches in Grid, P2P and wireless environment respectively. In addition, this paper proposes that trustworthy networks as the developing goal of the next generation Internet require using trust-based the access control model to assure security. This paper investigates on the trust and reputation model in detail, and finally gives the prospects of access control.

Zhang Qi,Zhong Qiuxi,Gong Jianwei

DOI: https://doi.org/10.3969/j.issn.1009-6833.2012.06.011

2012-01-01

Abstract:The mobile Internet is a mobile communication network and Internet integration product.Its composition is flexible,the functional differences.First the paper analysis of the mobile terminal security,then design a mobile terminal security situational awareness model based on object-oriented.The model using UML class diagrams describe the awareness index of terminal security.Finally design a situation data perceptive framework,achieve the mobile terminal remote access to the security situation in the data.

Qian Zhang,Ying Jiang,Peng Wu

DOI: https://doi.org/10.48550/arXiv.1512.01630

2016-06-15

Abstract:Game theory has been applied to investigate network security. But different security scenarios were often modeled via different types of games and analyzed in an ad-hoc manner. In this paper, we propose an algebraic approach for modeling and analyzing uniformly several types of network security games. This approach is based on a probabilistic extension of the value-passing Calculus of Communicating Systems (CCS) which is regarded as a Generative model for Probabilistic Value-passing CCS (PVCCSG for short). Our approach gives a uniform framework, called PVCCSG based security model, for the security scenarios modeled via perfect and complete or incomplete information games. We present then a uniform algorithm for computing the Nash equilibria strategies of a network security game on its PVCCSG based security model. The algorithm first generates a transition system for each of the PVCCSG based security models, then simplifies this transition system through graph-theoretic abstraction and bisimulation minimization. Then, a backward induction method, which is only applicable to finite tree models, can be used to compute all the Nash equilibria strategies of the (possibly infinite) security games. This algorithm is implemented and can also be tuned smoothly for computing its social optimal strategies. The effectiveness and efficiency of this approach are further demonstrated with four detailed case studies from the field of network security.

Cryptography and Security

Jinsong Gui,Zhigang Chen,Xiaoheng Deng

DOI: https://doi.org/10.1504/ijahuc.2012.049281

2012-01-01

International Journal of Ad Hoc and Ubiquitous Computing

Abstract:We propose a game scheme to stimulate cooperation in wireless access networks. Through game analysis, we get an acceptance probability and access control condition. Upon receiving a request from a mobile node, if an access point decides to deal with it based on the acceptance probability, its future trust is predicted. By using the predicted value, access control condition, and mobile node's cheat probability, the access point gets a decision-making result, which decides whether to respond the mobile node's request. We show that our scheme has more favourable incentive effect and less game cost than those of the existing works.