Abstract
In a real-world network confrontation process, attack and defense actions change rapidly and continuously. The network environment is complex and dynamically random. Therefore, attack and defense strategies are inevitably subject to random disturbances during their execution, and the transition of the network security state is affected accordingly. In this paper, we construct a network security state transition model by referring to the epidemic evolution process, use Gaussian noise to describe random effects during the strategy execution, and introduce a random disturbance intensity factor to describe the degree of random effects. On this basis, we establish an attack-defense stochastic differential game model, propose a saddle point equilibrium solution method, and provide an algorithm to select the optimal defense strategy. Our method achieves real-time defense decision-making in network attack-defense scenarios with random disturbances and has better real-time performance and practicality than current methods. Results of a simulation experiment show that our model and algorithm are effective and feasible.
Highlights
With the rapid development of network information technology, network attack means emerge endlessly, and network security has a profound impact on people’s daily life [1]
In 2019, more than 900 million network attacks were found in the world, 270 million URLs were identified as malicious URLs by web antivirus components, and 19.8% of computer users were attacked by malicious software at least once [2]
(1) We propose a network attack-defense stochastic differential game model, consider the influence of random factors in the execution of attack-defense strategies, and change the intensity factor of random disturbance and characterize the difference in the random disturbance effects on the players
Summary
With the rapid development of network information technology, network attack means emerge endlessly, and network security has a profound impact on people’s daily life [1]. Security and Communication Networks et al [13] constructed a multistage signaling game model, analyzed spear-phishing attacks on networks, considered defense effectiveness and strategy cost, and proposed an optimal strategy selection algorithm. Stochastic game models describe the influence of random factors in the game process through state jumps, but current models adopt staged game methods, which provide limited guidance for the continuous real-time selection of a network defense strategy. By solving and analyzing the saddle point equilibrium, we design an algorithm to select an optimal defense strategy and verify the effectiveness of the model and method through simulation experiments. Based on the numerical analysis on the number of nodes in different security states and attack-defense optimal dynamic strategies, we provide decision-making recommendations for network defense scenarios with random disturbances (experimental code and data are available at https://github.com/kaster-hn/Network-attack-defensestochastic-differential-game-algorithm)
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
