A constraint partially observable semi-Markov decision process for the attack–defence relationships in various critical infrastructures. Issue 2 (3rd April 2022)
- Record Type:
- Journal Article
- Title:
- A constraint partially observable semi-Markov decision process for the attack–defence relationships in various critical infrastructures. Issue 2 (3rd April 2022)
- Main Title:
- A constraint partially observable semi-Markov decision process for the attack–defence relationships in various critical infrastructures
- Authors:
- Niknami, Nadia
Wu, Jie - Abstract:
- ABSTRACT: Gaining a better understanding of the relationship between attackers and defenders in cybersecurity domains to protect computer systems is of great importance. From the defender's side, it is critical to choose the best reaction to maintain the system in a safe state, based on a given estimate of the attacker. One of the main challenges is that the defender may not be able to correctly detect a current attack due to incomplete and noisy information . Another important factor in the attack-defence interaction is the limited budget of both attackers and defenders. . This paper focuses on an approach based on interactions between the attacker and defender by considering the problem of uncertainty and limitation of resources for the defender, given that the attacker's actions are given in all states of a Markov chain. The best actions by the defender can be characterised by a Markov Decision Process in the case of partial observability and importance of time in the expected reward, which is a Partially Observable Semi-Markov Decision model. Our simulation on a trace-based data set demonstrates that the proposed approach handles analysing interactions of the attacker and defender with limited budgets foralong with imperfect information for the defender.
- Is Part Of:
- Cyber-physical systems. Volume 8:Issue 2(2022)
- Journal:
- Cyber-physical systems
- Issue:
- Volume 8:Issue 2(2022)
- Issue Display:
- Volume 8, Issue 2 (2022)
- Year:
- 2022
- Volume:
- 8
- Issue:
- 2
- Issue Sort Value:
- 2022-0008-0002-0000
- Page Start:
- 85
- Page End:
- 110
- Publication Date:
- 2022-04-03
- Subjects:
- Index Terms — Attackers -- best actions -- defenders -- imperfect information -- Markov chain -- Markov Decision Process (MDP) -- partially Observable MDP -- utility
Cooperating objects (Computer systems) -- Periodicals
Internet of things -- Periodicals
006.22 - Journal URLs:
- http://www.tandfonline.com/toc/tcyb20/current ↗
http://www.tandfonline.com/ ↗ - DOI:
- 10.1080/23335777.2021.1879935 ↗
- Languages:
- English
- ISSNs:
- 2333-5777
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 24036.xml