Usability aware secret protection with minimum cost. (December 2021)
- Record Type:
- Journal Article
- Title:
- Usability aware secret protection with minimum cost. (December 2021)
- Main Title:
- Usability aware secret protection with minimum cost
- Authors:
- Matsui, Shoma
Cai, Kai - Abstract:
- Abstract: In this paper we study a cybersecurity problem of protecting system's secrets with multiple protections and a required security level, while minimizing the associated cost due to implementation/maintenance of these protections as well as the affected system usability. The target system is modeled as a discrete-event system (DES) in which there are a subset of marker states denoting the services/functions provided to regular users, a subset of secret states, and multiple subsets of protectable events with different security levels. We first introduce usability-aware cost levels for the protectable events, and then formulate the security problem as to ensure that every system trajectory that reaches a secret state contains a specified number of protectable events with at least a certain security level, and the highest usability-aware cost level of these events is minimum. We first provide a necessary and sufficient condition under which this security problem is solvable, and when this condition holds we propose an algorithm to solve the problem based on the supervisory control theory of DES. Moreover, we extend the problem to the case of heterogeneous secrets with different levels of importance, and develop an algorithm to solve this extended problem. Finally, we demonstrate the effectiveness of our solutions with a network security example.
- Is Part Of:
- Nonlinear analysis. Volume 43(2022)
- Journal:
- Nonlinear analysis
- Issue:
- Volume 43(2022)
- Issue Display:
- Volume 43, Issue 2022 (2022)
- Year:
- 2022
- Volume:
- 43
- Issue:
- 2022
- Issue Sort Value:
- 2022-0043-2022-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-12
- Subjects:
- Usability -- Cybersecurity -- Secret protection -- Supervisory control theory -- Discrete-event systems -- Cyber–physical systems
Nonlinear functional analysis -- Periodicals
Analyse fonctionnelle non linéaire -- Périodiques
Nonlinear functional analysis
Periodicals
515.7248 - Journal URLs:
- http://www.sciencedirect.com/science/journal/1751570X ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.nahs.2021.101111 ↗
- Languages:
- English
- ISSNs:
- 1751-570X
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 6117.315800
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 20587.xml