nach oben

Erschienen in:

2015 | OriginalPaper | Buchkapitel

Flip the Cloud: Cyber-Physical Signaling Games in the Presence of Advanced Persistent Threats

verfasst von : Jeffrey Pawlick, Sadegh Farhang, Quanyan Zhu

Erschienen in: Decision and Game Theory for Security

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

Access to the cloud has the potential to provide scalable and cost effective enhancements of physical devices through the use of advanced computational processes run on apparently limitless cyber infrastructure. On the other hand, cyber-physical systems and cloud-controlled devices are subject to numerous design challenges; among them is that of security. In particular, recent advances in adversary technology pose Advanced Persistent Threats (APTs) which may stealthily and completely compromise a cyber system. In this paper, we design a framework for the security of cloud-based systems that specifies when a device should trust commands from the cloud which may be compromised. This interaction can be considered as a game between three players: a cloud defender/administrator, an attacker, and a device. We use traditional signaling games to model the interaction between the cloud and the device, and we use the recently proposed FlipIt game to model the struggle between the defender and attacker for control of the cloud. Because attacks upon the cloud can occur without knowledge of the defender, we assume that strategies in both games are picked according to prior commitment. This framework requires a new equilibrium concept, which we call Gestalt Equilibrium, a fixed-point that expresses the interdependence of the signaling and FlipIt games. We present the solution to this fixed-point problem under certain parameter cases, and illustrate an example application of cloud control of an unmanned vehicle. Our results contribute to the growing understanding of cloud-controlled systems.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Sequentially Composable Rational Proofs

Nächstes Kapitel Genetic Approximations for the Failure-Free Security Games

Nur mit Berechtigung zugänglich

Gestalt is a noun which means something that is composed of multiple arts and yet is different from the combination of the parts [2].

See [20] for a more comprehensive definition of the players, time, game state, and moves in FlipIt. Here, we move on to describing aspects of our game important for analyzing \(\mathbf {G_{CC}}\).

Since \(\mathcal {R}\) does not take part in \(\mathbf {G_{S}}\), it is not necessary to include \(\bar{u}_{\mathcal {R}}^{S*}\) as an output of the mapping.

These parameters must satisfy \(u_{\mathcal {R}}\left( \theta _{\mathcal {D}},m_{H},a_{T}\right) >u_{\mathcal {R}}\left( \theta _{\mathcal {D}},m_{H},a_{N}\right) \) and \(u_{\mathcal {R}}\left( \theta _{\mathcal {A}},m_{L},a_{T}\right) >u_{\mathcal {R}}\left( \theta _{\mathcal {A}},m_{L},a_{N}\right) \). Here, we give them specific values in order to plot the data.

When \(\bar{u}_{\mathcal {A}}^{S*}=\bar{u}_{\mathcal {D}}^{S*}=0\), we define that ratio to be equal to zero, since this will yield \(f_{\mathcal {A}}=0\) and \(p=0\), as in Eqs. (9) and (17). When \(\bar{u}_{\mathcal {D}}^{S*}=0\) and \(\bar{u}_{\mathcal {A}}^{S*}>0\), it is convenient to consider the ratio to be positively infinite since this is consistent with \(p\rightarrow 1\).

Note that this example featured a discontinuity in signaling game utilities on the border between equilibrium regions. Interestingly, even when the pooling equilibria differ between regions, it is possible that the equilibrium on the border admits a mixed strategy that provides continuity between the different equilibria in the two regions, and thus makes \(T^S\) continuous. This could allow \(\mathbf {G_{CC}}\) to have multiple Gestalt equilibria.

Delphi drive, Delphi Automotive. http://www.delphi.com/delphi-drive

Gestalt, Mirium-Webster. http://www.merriam-webster.com/dictionary/gestalt

Aström, K.J., Murray, R.M.: Feedback Systems: An Introduction for Scientists and Engineers. Princeton University Press, Princeton (2010)

Baheti, R., Gill, H.: Cyber-physical systems. In: The Impact of Control Technology, vol. 12, pp. 161–166 (2011)

Bhardwaj, S., Jain, L., Jain, S.: Cloud computing: A study of infrastructure as a service (IAAS). Int. J. Eng. Inf. Technol. 2(1), 60–63 (2010)

Bowers, K.D., van Dijk, M., Griffin, R., Juels, A., Oprea, A., Rivest, R.L., Triandopoulos, N.: Defending against the unknown enemy: applying FlipIt to system security. In: Grossklags, J., Walrand, J. (eds.) GameSec 2012. LNCS, vol. 7638, pp. 248–263. Springer, Heidelberg (2012) CrossRef

Carroll, T.E., Grosu, D.: A game theoretic investigation of deception in network security. In: Security and Communication, Networks vol. 4(10), pp. 1162–1172 (2011)

Casey, W., Morales, J.A., Nguyen, T., Spring, J., Weaver, R., Wright, E., Metcalf, L., Mishra, B.: Cyber security via signaling games: toward a science of cyber security. In: Natarajan, R. (ed.) ICDCIT 2014. LNCS, vol. 8337, pp. 34–42. Springer, Heidelberg (2014) CrossRef

Farhang, S., Manshaei, M.H., Esfahani, M.N., Zhu, Q.: A dynamic bayesian security game framework for strategic defense mechanism design. In: Poovendran, R., Saad, W. (eds.) GameSec 2014. LNCS, vol. 8840, pp. 319–328. Springer, Heidelberg (2014)

10.

Fudenberg, D., Tirole, J.: Game Theory, vol. 393. MIT press, Cambridge (1991)

11.

Guizzo, E.: How googles self-driving car works. IEEE Spectrum Online, 18 October

12.

Kehoe, B., Patil, S., Abbeel, P., Goldberg, K.: A survey of research on cloud robotics and automation. IEEE Trans. Autom. Sci. Eng. 12(2), 398–409 (2015)CrossRef

13.

Lee, E.A.: Cyber physical systems: design challenges. In: 2008 11th IEEE International Symposium on Object Oriented Real-Time Distributed Computing (ISORC), pp. 363–369. IEEE (2008)

14.

Nash, J.F., et al.: Equilibrium points in n-person games. Proc. Nat. Acad. Sci. USA 36(1), 48–49 (1950)MathSciNetCrossRefMATH

15.

Pawlick, J., Zhu, Q.: Deception by design: Evidence-based signaling games for network defense. arXiv preprint arXiv:1503.05458 (2015)

16.

Portokalidis, G., Slowinska, A., Bos, H.: Argos: an emulator for fingerprinting zero-day attacks for advertised honeypots with automatic signature generation. ACM SIGOPS Operating Syst. Rev. 40(4), 15–27 (2006)CrossRef

17.

Sampigethaya, K., Huang, L., Li, M., Poovendran, R., Matsuura, K., Sezaki, K.: Caravan: Providing location privacy for vanet. Technical report, DTIC Document (2005)

18.

Sampigethaya, K., Li, M., Huang, L., Poovendran, R.: Amoeba: Robust location privacy scheme for vanet. IEEE J. Sel. Areas Commun. 25(8), 1569–1589 (2007)CrossRef

19.

Tankard, C.: Advanced persistent threats and how to monitor and deter them. Netw. Secur. 2011(8), 16–19 (2011)CrossRef

20.

van Dijk, M., Juels, A., Oprea, A., Rivest, R.L.: Flipit: The game of “stealthy takeover”. J. Cryptol. 26(4), 655–713 (2013)CrossRefMATH

21.

Zhuang, J., Bier, V.M., Alagoz, O.: Modeling secrecy and deception in a multiple-period attacker-defender signaling game. Eur. J. Oper. Res. 203(2), 409–418 (2010)MathSciNetCrossRefMATH

Titel: Flip the Cloud: Cyber-Physical Signaling Games in the Presence of Advanced Persistent Threats
verfasst von: Jeffrey Pawlick
Sadegh Farhang
Quanyan Zhu
Verlag: Springer International Publishing
Buch: Decision and Game Theory for Security
Print ISBN: 978-3-319-25593-4

Electronic ISBN: 978-3-319-25594-1

Copyright-Jahr: 2015
DOI: https://doi.org/10.1007/978-3-319-25594-1_16

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner