DocumentCode
3376044
Title
Strategy-Aware Mitigation Using Markov Games for Dynamic Application-Layer Attacks
Author
Emami-Taba, Mahsa ; Amoui, Mehdi ; Tahvildari, Ladan
Author_Institution
Software Technol. Appl. Res. (STAR) Group, Univ. of Waterloo, Waterloo, ON, Canada
fYear
2015
fDate
8-10 Jan. 2015
Firstpage
134
Lastpage
141
Abstract
Targeted and destructive nature of strategies used by attackers to break down the system require mitigation approaches with dynamic awareness. In the domain of adaptive software security, the adaptation manager of a self-protecting software is responsible for selecting countermeasures to prevent or mitigate attacks immediately. Making a right decision in each and every situation is one of the most challenging aspects of engineering self-protecting software systems. Inspired by the game theory, in this research work, we model the interactions between the attacker and the adaptation manager as a two-player zero-sum Markov game. Using this game-theoretic approach, the adaptation manager can refine its strategies in dynamic attack scenarios by utilizing what has learned from the system´s and adversary´s actions. We also present how this approach can be fitted to the well-known MAPE-K architecture model. As a proof of concept, this research conducts a study on a case of dynamic application-layer denial of service attacks. The simulation results demonstrate how our approach performs while encountering different attack strategies.
Keywords
Markov processes; game theory; security of data; MAPE-K architecture model; adaptation manager; adaptive software security domain; application-layer denial of service attacks; attack strategy; dynamic application-layer attacks; dynamic attack scenario; game-theoretic approach; self-protecting software systems; strategy-aware mitigation approach; two-player zero-sum Markov game; Adaptation models; Computer crime; Game theory; Games; Markov processes; Adaptive Security; Dynamic Application-Layer Attacks; Game Theory; Markov Games;
fLanguage
English
Publisher
ieee
Conference_Titel
High Assurance Systems Engineering (HASE), 2015 IEEE 16th International Symposium on
Conference_Location
Daytona Beach Shores, FL
Print_ISBN
978-1-4799-8110-6
Type
conf
DOI
10.1109/HASE.2015.28
Filename
7027424
Link To Document