信号博弈网络安全威胁评估方法

doi:10.3969/j.issn.1001-2400.2016.03.024

西安电子科技大学学报 ›› 2016, Vol. 43 ›› Issue (3): 137-143.doi: 10.3969/j.issn.1001-2400.2016.03.024

信号博弈网络安全威胁评估方法

张恒巍;余定坤;韩继红;王晋东;寇广

(解放军信息工程大学密码工程学院，河南郑州 450001)

收稿日期:2015-01-20 出版日期:2016-06-20 发布日期:2016-07-16
通讯作者: 张恒巍
作者简介:张恒巍(1978-)，男，解放军信息工程大学博士研究生，E-mail: zhw11qd@126.com．
基金资助:
国家自然科学基金资助项目(61303074; 61309013)；国家重点基础研究发展计划(“973”计划)资助项目(2012CB315900)

Network security threat assessment based on the signaling game

ZHANG Hengwei;YU Dingkun;HAN Jihong;WANG Jindong;KOU Guang

(Institute of Cipher Engineering, PLA Information Engineering Univ., Zhengzhou 450001, China)

Received:2015-01-20 Online:2016-06-20 Published:2016-07-16
Contact: ZHANG Hengwei

摘要/Abstract

摘要：

目前，基于博弈理论的网络安全防御多数使用完全信息或静态博弈理论来进行攻防博弈模型的建立．为了更加贴近网络实际进行安全威胁评估，提出了基于信号博弈的网络攻防博弈模型，从动态、不完全信息角度对攻防行为建模；给出了信号博弈完美贝叶斯均衡求解过程，并对存在的各类均衡进行分析；将后验信念作为防御者对攻击者类型的预测，提出基于上述模型的网络安全威胁评估算法，对防御者面临的安全威胁进行评估，给出相应安全威胁等级．最后，通过对一个网络实例进行分析，验证了提出模型和方法的可行性和有效性．

关键词: 信号博弈, 动态, 不完全信息, 威胁评估, 完美贝叶斯均衡

Abstract:

Nowadays, researches on network security defense based on game theory mostly use completed information or static game theory to establish the attack-defense model. In order to perform security threat assessment in a closer way to the practical situation in a network, this paper proposes a network attack-defense game model based on the signaling game, which is modeled in a dynamic and uncompleted way. After putting forward the solving process of the perfect Bayesian equilibrium of the signaling game, this paper analyzes all kinds of equilibriums existing in the game. Taking the posterior belief as the defender's prediction of the attacker's type, this paper puts forward the assessment algorithm for the network security threat based on the model above, predicts the security threat the defender is facing, and provides the security threat grade for the evaluator. Finally, the feasibility and validity of the model and the method proposed by this paper are testified through the analysis of a network example.

Key words: signaling game, dynamic, uncompleted information, threat assessment, perfect Bayesian equilibrium

中图分类号:

TP309

张恒巍;余定坤;韩继红;王晋东;寇广. 信号博弈网络安全威胁评估方法[J]. 西安电子科技大学学报, 2016, 43(3): 137-143.

ZHANG Hengwei;YU Dingkun;HAN Jihong;WANG Jindong;KOU Guang. Network security threat assessment based on the signaling game[J]. Journal of Xidian University, 2016, 43(3): 137-143.

参考文献

［1］ ROESCH M. Snort-Lightweight Intrusion Detection for Networks［C］//Proceedings of the 13th System Administration Conference and Exhibition. Berkeley: USENIX, 1999: 229-238.
［2］杨宏宇, 江华. 基于攻击图的多Agent网络安全风险评估模型［J］. 计算机科学, 2013, 40(2): 148-152.
YANG Hongyu, JIANG Hua. Multi-agents Network Security Risk Evaluation Model Based on Attack Graph Assocation［J］. Computer Science, 2013, 40(2): 148-152.
［3］谢丽霞, 仇晓锐, 李学菲. 基于攻击图模型的网络安全风险评估研究［J］. 微电子学与计算机, 2014, 31(7): 77-83.
XIE Lixia, QIU Xiaorui, LI Xuefei. Research on Network Security Risk Assessment Based on Attack Graph Model［J］. Microelectronics and Computer, 2014, 31(7): 77-83.
［4］张永铮, 方滨兴, 迟悦. 用于评估网络信息系统的风险传播模型［J］. 软件学报, 2007, 18(1): 137-145.
ZHANG Yongzheng, FANG Bingxing, CHI Yue. Risk Propagation Model for Assessing Network Information Systems［J］. Journal of Software, 2007, 18(1): 137-145.
［5］ FALLAH M S. A Puzzle-based Defense Strategy Against Flooding Attacks Using Game Theory［J］. Dependable and Secure Computing, 2010, 7(1): 5-19.
［6］ LYE K, WING J. Game Strategies in Network Security［J］. International Journal of Information Security, 2005, 4(1/2): 71-82.
［7］姜伟, 方滨兴, 田志宏,等. 基于攻防博弈模型的网络安全测评和最优主动防御［J］. 计算机学报, 2009, 32(4): 817-825.
JIANG Wei, FANG Bingxing, TIAN Zhihong, et al. Research on Defense Strategies Selection Based on Attack-Defense Stochastic Game Model ［J］. Chinese Journal of Computers, 2009, 32(4): 817-825.
［8］ WHITE J, PARK J S, KAMHOUA C A, et al. Game Theoretic Attack Analysis in Online Social Network(OSN) Services［C］//IEEE/ACM International Conference on Social Networks Analysis and Mining. New York: ACM, 2013: 1012-1019.
［9］林旺群, 王慧, 刘佳宏, 等. 基于非合作动态博弈的网络安全主动防御技术研究［J］. 计算机研究与发展, 2011, 48(2): 306-316.
LIN Wangqun, WANG Hui, LIU Jiahong, et al. Research on Active Defense Technology in Network Security Based on Non-cooperative Dynamic Game Theory ［J］. Journal of Computer Research and Development, 2011, 48(2): 306-316.
［10］刘玉岭, 冯登国, 吴力辉, 等. 基于静态贝叶斯博弈的蠕虫攻防策略绩效评估［J］. 软件学报, 2012, 23(3): 712-723.
LIU Yuling, FENG Dengguo, WU Lihui, et al. Performance Evaluation of Worm Attack and Defense Strategies Based on Static Bayesian Game ［J］. Journal of Software, 2012, 23(3): 712-723.
［11］ GAO X, ZHU Y F. DDoS Defense Menchanism Analysis Based on Signaling Game Model［C］//Proceedings of the 5th Interantional Conference on Intelligent Human-Machine Systems and Cybernetics. Washington: IEEE Computer Society, 2013: 414-417.
［12］ BABAR S D, PRASAD N R, PRASAD R. Game Theoretic Modelling of WSN Jamming Attack and Detection Mechanism［C］//Proceedings of the 16th International Symposium on Wireless Personal Multimedia Communications. Washington: IEEE Computer Society, 2013: 1-5.
［13］ KAYODE A B, BABATUNDE I G, ISRAEL H D, et al. DGM Approach to Network Attacker and Defender Strategies［C］//Proceedings of the 8th International Conference for Digital Object Internet Technology and Secured Transactions. Washington: IEEE Computer Society, 2013: 313-320.

[1]	赵辉,冯南之,王泉,万波,王静. 面向边缘计算平台的半线上任务动态调度方法[J]. 西安电子科技大学学报, 2021, 48(6): 8-15.
[2]	张佳琦,陶海红,张修社,韩春雷. 一种利用量测空间聚类的多帧检测前跟踪算法[J]. 西安电子科技大学学报, 2021, 48(5): 231-238.
[3]	刘宏,徐乐,田彤. 用于X射线探测的多通道电荷读出芯片[J]. 西安电子科技大学学报, 2021, 48(4): 97-102.
[4]	梅淑琳,贾海蓉,王晓刚,武奕峰. 动态特征联合新掩模优化神经网络语音增强[J]. 西安电子科技大学学报, 2021, 48(3): 91-98.
[5]	李涵,张晨,黄荷姣,郭宇. 一种支持前向安全更新和验证的加密搜索算法[J]. 西安电子科技大学学报, 2020, 47(5): 48-56.
[6]	司成祥,高峰,祝烈煌,巩国鹏,张璨,陈卓,李锐光. 一种支持动态标签的区块链数据隐蔽传输机制[J]. 西安电子科技大学学报, 2020, 47(5): 94-102.
[7]	卢万杰,蓝朝桢,吕亮,施群山,徐青. 一种空间目标轨道状态动态推理方法[J]. 西安电子科技大学学报, 2020, 47(3): 72-79.
[8]	贾鼎成,王磊磊,高薇. 三维集成电路中内存的经时击穿分析与检测[J]. 西安电子科技大学学报, 2019, 46(4): 182-189.
[9]	陈矗. RFCcertDT:SSL/TLS中证书验证的测试工具[J]. 西安电子科技大学学报, 2019, 46(3): 20-25.
[10]	毕城,王玲琳,刘永信. 参数自适应动态贝叶斯舰船态势估计算法[J]. 西安电子科技大学学报, 2019, 46(2): 158-163.
[11]	段钊, 刘锟龙. 采用CPAChecker的动态程序验证[J]. 西安电子科技大学学报, 2019, 46(1): 33-38.
[12]	熊余;李志强;杨娅娅. 数据中心间光互联网络中的跨层动态保护策略[J]. 西安电子科技大学学报, 2018, 45(3): 136-142.
[13]	付立冬;马小科;聂靖靖. 进化谱分算法检测动态网络社团结构[J]. 西安电子科技大学学报, 2018, 45(2): 43-47+53.
[14]	孙彦景;刘雯;曹起;王晓琳;周舒;李松. 联合功率分配的全双工MIMO中继最小速率优化[J]. 西安电子科技大学学报, 2018, 45(2): 103-109.
[15]	靳红玲;郭成洋;陈军;陈建军. 空间柔性梁的动态可靠性分析[J]. 西安电子科技大学学报, 2017, 44(6): 138-143.

信号博弈网络安全威胁评估方法

Network security threat assessment based on the signaling game

PDF (PC)

赞

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

Metrics

本文评价

推荐阅读 10