Modeling and security analysis of enterprise network using attack–defense stochastic game Petri nets

Authors:
Yuanzhuo Wang;Jingyuan Li;Kun Meng;Chuang Lin;Xueqi Cheng
Affiliations:
Institute of Computing Technology, Chinese Academy of Sciences, Beijing, 100190, China and Department of Computer Science and Technology, Tsinghua University, Beijing, 100084, China;Institute of Computing Technology, Chinese Academy of Sciences, Beijing, 100190, China;Department of Computer Science and Technology, Tsinghua University, Beijing, 100084, China;Department of Computer Science and Technology, Tsinghua University, Beijing, 100084, China;Institute of Computing Technology, Chinese Academy of Sciences, Beijing, 100190, China
Venue:
Security and Communication Networks
Year:
2013

Citing 13
Cited 0

Experimenting with Quantitative Evaluation Tools for Monitoring Operational Security

IEEE Transactions on Software Engineering
Sustaining Availability of Web Services under Distributed Denial of Service Attacks

IEEE Transactions on Computers
SPNP: Stochastic Petri Net Package

PNPM '89 The Proceedings of the Third International Workshop on Petri Nets and Performance Models
Modeling and Quantification of Security Attributes of Software Systems

DSN '02 Proceedings of the 2002 International Conference on Dependable Systems and Networks
Defending Against Denial-of-Service Attacks with Puzzle Auctions

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Model-Based Evaluation: From Dependability to Security

IEEE Transactions on Dependable and Secure Computing
Incentive-based modeling and inference of attacker intent, objectives, and strategies

ACM Transactions on Information and System Security (TISSEC)
Using Stochastic Game Theory to Compute the Expected Behavior of Attackers

SAINT-W '05 Proceedings of the 2005 Symposium on Applications and the Internet Workshops
Towards a Stochastic Model for Integrated Security and Dependability Evaluation

ARES '06 Proceedings of the First International Conference on Availability, Reliability and Security
Security analysis for online banking system using hierarchical stochastic game nets model

GLOBECOM'09 Proceedings of the 28th IEEE conference on Global telecommunications
Security analysis of enterprise network based on stochastic game nets model

ICC'09 Proceedings of the 2009 IEEE international conference on Communications
Modeling and Analysis of Email Worm Propagation Based on Stochastic Game Nets

PDCAT '11 Proceedings of the 2011 12th International Conference on Parallel and Distributed Computing, Applications and Technologies
Stochastic game net and applications in security analysis for enterprise network

International Journal of Information Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we propose a novel modeling method attack–defense stochastic game Petri nets (or ADSGN) to model and analyze the security issues in enterprise network. We firstly give the definition and modeling method algorithm of ADSGN and then propose the algorithm of the strategy. The proposed ADSGN method is successfully applied to describe the attack and defense courses in the enterprise network. Finally, we analyze the mean time to first security breach and the mean time to security breach in the enterprise network quantifiably, and proved that our method can also be applied to other areas with respect to game issues. Copyright © 2012 John Wiley & Sons, Ltd. (According to the characteristics of the network attack and defense actions, we extend the previous work by proposing attack-defense stochastic game Petri nets (or ADSGNs), which can be used to model and analyze the competitive game issues by using classical methods from stochastic Petri nets. ADSGN are suitable to investigate the complex and dynamic game-related issues in network attack. In this paper, we use ADSGN to model and analyze the enterprise network attacks, compute the Nash equilibrium to deduce the best-response strategies to defend the attacks. We believe that ADSGN can open a new avenue to handle the game-related issues in network security.)