Author:
Li Nianyu,Zhang Mingyue,Kang Eunsuk,Garlan David
Abstract
AbstractSecurity attacks present unique challenges to self-adaptive system design due to the adversarial nature of the environment. Game theory approaches have been explored in security to model malicious behaviors and design reliable defense for the system in a mathematically grounded manner. However, modeling the system as a single player, as done in prior works, is insufficient for the system under partial compromise and for the design of fine-grained defensive strategies where the rest of the system with autonomy can cooperate to mitigate the impact of attacks. To deal with such issues, we propose a new self-adaptive framework incorporating Bayesian game theory and model the defender (i.e., the system) at the granularity ofcomponents. Under security attacks, the architecture model of the system is translated into aBayesian multi-player game, where each component is explicitly modeled as an independent player while security attacks are encoded as variant types for the components. The optimal defensive strategy for the system is dynamically computed by solving the pure equilibrium (i.e., adaptation response) to achieve the best possible system utility, improving the resiliency of the system against security attacks. We illustrate our approach using an example involving load balancing and a case study on inter-domain routing.
Publisher
Springer International Publishing
Reference44 articles.
1. Web server and its types of attacks. https://www.greycampus.com/opencampus/ethical-hacking/web-server-and-its-types-of-attacks. Accessed: 2010-09-30.
2. Y. Al-Nashif, A. A. Kumar, S. Hariri, Y. Luo, F. Szidarovsky, and G. Qu. Multi-level intrusion detection system (ml-ids). In 2008 International Conference on Autonomic Computing, pages 131–140, 2008.
3. Ofra Amir, Guni Sharon, and Roni Stern. Multi-agent pathfinding as a combinatorial auction. In The Twenty-Ninth AAAI Conference on Artificial Intelligence(AAAI), pages 2003–2009, 2015.
4. Christopher Bailey, Lionel Montrieux, Rogério de Lemos, Yijun Yu, and Michel Wermelinger. Run-time generation, transformation, and verification of access control models for self-protection. In 9th International Symposium on Software Engineering for Adaptive and Self-Managing Systems, SEAMS 2014, Proceedings, Hyderabad, India, June 2-3, 2014, pages 135–144, 2014.
5. Mike Burmester, Emmanouil Magkos, and Vassilios Chrissikopoulos. Modeling security in cyber-physical systems. Int. J. Crit. Infrastructure Prot., 5(3-4):118–126, 2012.
Cited by
4 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. A Game-Theoretical Self-Adaptation Framework for Securing Software-Intensive Systems;ACM Transactions on Autonomous and Adaptive Systems;2024-04-20
2. Privacy-preserving Resilient Consensus for Multi-agent Systems in a General Topology Structure;ACM Transactions on Privacy and Security;2023-06-26
3. Preference Adaptation: user satisfaction is all you need!;2023 IEEE/ACM 18th Symposium on Software Engineering for Adaptive and Self-Managing Systems (SEAMS);2023-05
4. Resilient Mechanism Against Byzantine Failure for Distributed Deep Reinforcement Learning;2022 IEEE 33rd International Symposium on Software Reliability Engineering (ISSRE);2022-10