Academia.eduAcademia.edu

Outline

Title
Abstract
Introduction
Literature Review
Related Works
Proposed System Design
Results and Discussion
Conclusion
References

Game-theoretical Approaches to Cyber-crime Monitoring

Profile image of olaniyi Ayeniolaniyi Ayeni

Asian Journal of Research in Computer Science

https://doi.org/10.9734/AJRCOS/2022/V14I4309
visibility

description

10 pages

link

1 file

Abstract

Our society's diploma of reliance on IT and our online world is developing daily. Cyberspace, the call given to the worldwide and dynamic domain, composed of the infrastructure of the statistics era consisting of the net networks and statistics and telecommunications structures has supplied extraordinary globalization that gives new opportunities, but additionally includes new challenges, risks, and threats. Knowledge of its threats, dealing with the risks, and constructing suitable prevention, defense, detection, evaluation, investigation, and recuperation is essential. Given the present-day assessment of the statistics safety and intrusion detection, there's without a doubt a want for a choice and manipulation framework to cope with problems like assault modeling, evaluation of detected threats, and choice of reaction actions. We look at the goals of designing a mathematical version for gamified cybercrime tracking in a community environment.

Related papers

Game Theory and Cyber Security
Sriya Rachamalla

2020

1,2Sreenidhi Institute of Science and Technology, Hyderabad, Telangana-501301. --------------------------------------------------------------------***--------------------------------------------------------------------ABSTRACT: Cyber security is among the most incredible and rapidly creating issues and has been the point of convergence of present day affiliations. Cyber security chance organization is the path toward regulating or lessening conceivably risky and questionable events that bunch as threats to cyber security. It incorporates seeing what could turn out gravely on the web and choosing ways to deal with maintain a strategic distance from or limit their occasions or effects. One of the observable computerized security chance organization techniques is the Game Theoretic Approach (GTA), which bases on the use of advantages, inward controls, information sharing, specific improvements, direct or various leveled scale ups and digital assurance for advanced peril the board. It d...

View PDFchevron_right
Cyber Security using Game theory
Dipak Bhosale

2016

Cyber Security is a complex concept that depends on the domain knowledge and requires cognitive abilities to determine possible threats from large amount of network data. Strengthening the security and resilience of cyberspace has become an important homeland security mission. Game theory is famous theory for detecting the threats as well as preventing the threats. In analysis various attack strategies can be considered such as inflation, deflation and Oscillation. Game theory provides the basic training and awareness of key algorithmic principles and lessons learned. In Game theory, the defense strategies are outlier detection and Adaptive Threshold selection. Using game theory the user can easily detect the intruders and provide the solution for the problems in step by step manner, which is easy and understandable language.

View PDFchevron_right
Dynamic Game Theories in Cyber Security
Kandethody Ramachandran

2016

The Internet is an integral way of conducting daily business from government agencies to entertainers. Protection from attack, damage, or unauthorized access is necessary with the increase of mobile users, digital applications and data networks. A cyber security problem can be viewed as a conflict-resolution scenario that typically consists of a security system and at least two decision makers (e.g. attacker and defender) each with competing objectives. For instance, on one hand, the defender may be interested in ensuring that the system performs at or above a certain acceptable level. The attacker’s objective, on the other hand, may be to disrupt the system and degrade it. Game theory is a wellestablished tool that can be used to analyze such problems. In this work, we present a brief survey of how game theory can be used to find appropriate strategies for both the hacker (attacker) and the administrator (defender). We model the interactions between them as a stochastic game. Vario...

View PDFchevron_right
Game Theoretic Solutions to Cyber Attack and Network Defense Problems
Erik Blasch

2007

Public reporting burden for the collection of information is estimated to average 1 hour per response, including the time for reviewing instructions, searching existing data sources, gathering and maintaining the data needed, and completing and reviewing the collection of information. Send comments regarding this burden estimate or any other aspect of this collection of information, including suggestions for reducing this burden, to Washington Headquarters Services, Directorate for Information Operations and Reports, 1215 Jefferson Davis Highway, Suite 1204, Arlington VA 22202-4302. Respondents should be aware that notwithstanding any other provision of law, no person shall be subject to a penalty for failing to comply with a collection of information if it does not display a currently valid OMB control number.

View PDFchevron_right
A game theoretical approach to communication security
Assane Gueye

A Game Theoretical Approach to Communication Security by Assane Gueye

View PDFchevron_right
Strategies comparison for game theoretic cyber situational awareness and impact assessment
Erik Blasch

2007 10th International Conference on Information Fusion, 2007

Game theory is not a new concept in cyber defense. Current game theoretic approaches [1-3] for cyber network intrusion detection and decision support are based on static matrix games and simple extensive games, which are usually solved by game trees. However, these matrix game models lack the sophistication to study multiplayers with relatively large actions spaces, and large planning horizons. Some partial results of our dynamic Markov game approach have been published in .

View PDFchevron_right
A game theoretic approach to decision and analysis in network intrusion detection
Tamer Basar

42nd IEEE International Conference on Decision and Control (IEEE Cat. No.03CH37475), 2000

We investigate the basic trade-offs, analysis and decision processes involved in information security and intrusion detection, as well as possible application of game theoretic concepts to develop a formal decision and control framework. A generic model of a distributed intrusion detection system (IDS) with a network of sensors is considered, and two schemes based on game theoretic techniques are proposed. The security warning system is simple and easy-to-implement, and it gives system administrators an intuitive overview of the security situation in the network. The security attack game, on the other hand, models and analyzes attacker and IDS behavior within a two-person, nonzero-sum, noncooperative game with dynamic information. Nash equilibrium solutions in closed form are obtained for specific subgames, and two illustrative examples are provided.

View PDFchevron_right
On a Generic Security Game Model
Vivek Shandilya

International Journal of Communications, Network and System Sciences, 2017

To protect the systems exposed to the Internet against attacks, a security system with the capability to engage with the attacker is needed. There have been attempts to model the engagement/interactions between users, both benign and malicious, and network administrators as games. Building on such works, we present a game model which is generic enough to capture various modes of such interactions. The model facilitates stochastic games with imperfect information. The information is imperfect due to erroneous sensors leading to incorrect perception of the current state by the players. To model this error in perception distributed over other multiple states, we use Euclidean distances between the outputs of the sensors. We build a 5-state game to represent the interaction of the administrator with the user. The states correspond to 1) the user being out of the system in the Internet, and after logging in to the system; 2) having low privileges; 3) having high privileges; 4) when he successfully attacks and 5) gets trapped in a honeypot by the administrator. Each state has its own action set. We present the game with a distinct perceived action set corresponding to each distinct information set of these states. The model facilitates stochastic games with imperfect information. The imperfect information is due to erroneous sensors leading to incorrect perception of the current state by the players. To model this error in perception distributed over the states, we use Euclidean distances between outputs of the sensors. A numerical simulation of an example game is presented to show the evaluation of rewards to the players and the preferred strategies. We also present the conditions for formulating the strategies when dealing with more than one attacker and making collaborations.

View PDFchevron_right
A Network Security Game Model
Vivek Shandilya

Proceedings of the 5th ACM Conference on Data and Application Security and Privacy, 2015

There have been attempts to model the interaction between users, both malicious and benign, and network administrators as games. Building on such works, we here present a game model which is generic enough to capture various modes of such interactions. The model facilitates stochastic games with imperfect information. The imperfect information is due to erroneous sensors leading to incorrect perception of the current state by the players. To model this error in perception distributed over other multiple states, we use Euclidean distances between inputs from the sensors.

View PDFchevron_right
A Game-theoretic Scenario for Modelling the Attacker-Defender Interaction
Ogundele Samuel

Journal of Computer Engineering & Information Technology, 2013

Existing computer security techniques lack the quantitative decision framework required to defend against highly organized attacks. Game theory provides a set of quantitative and analytical tools for describing and analyzing interactive decision situations in computer security. Recently, game-theoretic approaches such as stochastic security games have been used to study security problems as an optimization game comprising multiple players notably the attackers and the defenders (system administrators). Stochastic security games are a probabilistic approach appropriate for studying particularly complex networks where attacks often go from a state and proceeds to another according to a probability distribution. A stochastic game-model that views the interaction between malicious users and network administrators as a two-player zerosum game was developed. A binary coding scheme was employed for identifying game states and game transition diagrams were generated to describe possible movements of players. A stochastic algorithm was developed to solve the game and compute the optimal strategies for the players. A simulation of the algorithm was carried out the output analyzed to show the techniques that network administrators can employ to predict adversary's actions, determine vulnerable network assets and suggest optimal defense strategies for the defender.

View PDFchevron_right

References (18)

  1. Rabinovitch E. The neverending saga of internet security: why? how? and what to do next? IEEE Commun Mag. 2001; 39(5):56-8. DOI: 10.1109/MCOM.2001.920859
  2. Singer PW, Friedman A. Cybersecurity and Cyberwar: What everybody needs to know. NY: Oxford Univeristy Press; 2014.
  3. Cruz A. Cyber crime and how it affects you. Mon Newsl. 2013;7(1).
  4. Halder D, Jaishankar K. Cyber crime and the victimization of women: laws, rights and regulations. Information science reference; 2012.
  5. Manshaei MH, Zhu Q, Alpcan T, Basar T, Hubaux J-P. Game theory meets network security and privacy. Acad Med; 2010.
  6. Sallhammar K, Knapskog SJ, Helvik BE. Using stochastic game theory to compute the expected behavior of attackers. Symposium on Applications and the Internet Workshops. Trento, Italy: IEEE Publications Xplore. 2005;102-5. DOI: 10.1109/SAINTW.2005.1619988
  7. Milind T, Manish J. Introduction and overview of security games. University of Southern California. Cambridge University Press; 2011.
  8. Alpcan T, Başar T. Network security -A decision and game-theoretic approach. Cambridge University Press; 2011.
  9. Bonanno G. University of calofornia; 2015 [cited Sep 2, 2022].
  10. Russell D, Gangemi G. Computer security basics. Sebastopol: O'Reilly and Associates. 1991;CA0.
  11. Jajodia S, Noel S. Topological vulnerability analysis. In: Cyber situational awareness. Boston: Springer. 2010;139-54. DOI: 10.1007/978-1-4419-0140-8_7
  12. Clark KS, Bushnell L, Poovendran R. A game-theoretic approach to IP address randomization in decoy-based cyber defense. Proceedings of the 6th international conference, GameSec 2015, London, UK. Springer; 2015.
  13. Zhiheng X, Arvind E. A game-Theoritic approach to secure estimation and control for cyber physical systems with a digital twin. Acad Med/IEEE International Conference on Cyber-Physical Systems (ICCPS). 2020;20-9.
  14. Zhang M, Zheng Z, Shroff NB. A game theoretic model for defending against stealthy attacks with limited resources. Proceedings of the 6th international conference, GameSec 2015, London, UK. Springer; 2015.
  15. Hayel Y, Zhu Q. Attack-aware cyber insurance for risk sharing in computer networks. Proceedings of the 6th international conference, GameSec 2015, London, UK. Springer; 2015.
  16. Durkota K, Lisy V, Bosansky B, Kiekintveld C. Approximate solutions for attack graph games with imperfect information. Proceedings of the 6th international conference, GameSec 2015, London, UK. Springer; 2015.
  17. Akinwumi DA, Iwasokun GB, Alese BK, Oluwadare SA. A review of game theory approach to cyber security risk management. Niger J Technol. Proceedings of the 6th international conference, GameSec 2015, London, UK. 2017;36(4):1271-85. DOI: 10.4314/njt.v36i4.38
  18. Morton D, Stephen D, Brams J. Encyclopedia Britannical. Retrieved from Encyclpedia Britannical; 2022. Available:Http://www. Available:http://britannical.com/science/ga me-theory _________________________________________________________________________________

Related papers

Gamified Cyber-Crime Monitoring and Control Framework in a Computer Network Environment
olaniyi Ayeni

Asian Journal of Research in Computer Science

Recent advancements in cybercrime are continually emerging, with the estimated damages to the global economy reaching the billion dollar mark. In the past, people acting alone or in small groups were the main perpetrators of cybercrime. Complex cybercriminal networks are now bringing people from all over the world together in real time to commit crimes on a never-before-seen scale. Game theory gives a formal vocabulary for the description and study of interacting situations in which a number of "entities," known as players, take actions that have an effect on one another. The field of cyber security could benefit from problem-solving techniques based on games theory to protect assets. In this article, we suggest a conceptual framework for a system for monitoring and controlling cybercrime.

View PDFchevron_right
Game-Theoretic Cybersecurity: the Good, the Bad and the Ugly
Shouhuai Xu

Given the scale of consequences attributable to cyber attacks, the field of cybersecurity has long outgrown ad-hoc decision-making. A popular choice to provide disciplined decision-making in cybersecurity is Game Theory, which seeks to mathematically understand strategic interaction. In practice though, game-theoretic approaches are scarcely utilized (to our knowledge), highlighting the need to understand the deficit between the existing state-of-the-art and the needs of cybersecurity practitioners. Therefore, we develop a framework to characterize the function and assumptions of existing works as applied to cybersecurity and leverage it to characterize 80 unique technical papers. Then, we leverage this information to analyze the capabilities of the proposed models in comparison to the application-specific needs they are meant to serve, as well as the practicality of implementing the proposed solution. Our main finding is that Game Theory largely fails to incorporate notions of uncertainty critical to the application being considered. To remedy this, we provide guidance in terms of how to incorporate uncertainty in a model, and what forms of uncertainty are critical to consider in each application area, and how to model the information that is available in each application area. CCS Concepts: • Security and privacy → Network security; Intrusion detection systems; • Mathematics of computing → Mathematical analysis.

View PDFchevron_right
Game theoretic models of networks security
stamatios katsikas

2017

Decision making in the context of crime execution and crime prevention can be successfully investigated with the implementation of game-theoretic tools. Evolutionary and mean-field game theory allow for the consideration of a large number of interacting players organized in social and behavioural structures, which typically characterize this context. Alternatively, `traditional' game-theoretic approaches can be applied for studying the security of an arbitrary network on a two player non-cooperative game. Theoretically underpinned by these instruments, in this thesis we formulate and analyse game-theoretic models of inspection, corruption, counter- terrorism, patrolling, and similarly interpreted paradigms. Our analysis suggests optimal strategies for the involved players, and illustrates the long term behaviour of the introduced systems. Our contribution is towards the explicit formulation and the thorough analysis of real life scenaria involving the security in network structu...

View PDFchevron_right
“Adapting C2 to the 21st Century” Game Theoretic Solutions to Cyber Attack and Network Defense Problems Assigned Track: Network and Networking (Track 2)
Erik Blasch

2015

Game Theoretic Solutions to Cyber Attack and Network Defense Problems There are increasing needs for research in the area of cyber situational awareness. The protection and defense against cyber attacks to computer network is becoming inadequate as the hacker knowledge sophisticates and as the network and each computer system become more complex. Current methods for alert correlation to detect and identify network attacks rely on data mining approaches that use features or feature sets of network data to discover an attack. These approaches are useful for simple attacks but for complex or coordinated cyber intrusions, they have various issues such as false positive, limited scalability, limits on detecting new types of coordinated and sophisticated cyber attacks. Therefore, the cyberspace security requires next-generation network management and intrusion detection systems that combine both short-term sensor information and long-term knowledge databases to provide decision-support sy...

View PDFchevron_right
Game theoretical modelling of network/cybersecurity
Azhar Iqbal

https://arxiv.org/abs/1901.08426, 2019

Game theory is an established branch of mathematics that offers a rich set of mathematical tools for multiperson strategic decision making that can be used to model the interactions of decision makers in security problems who compete for limited and shared resources. This article presents a review of the literature in the area of game theoretical modelling of network/cybersecurity and identifies a number of challenges in this area that need to be addressed.

View PDFchevron_right
580 California St., Suite 400
San Francisco, CA, 94104
© 2025 Academia. All rights reserved