CSRS: Cyber Survive and Recover Simulator

Swastik Brahma, Kevin Kwiat, Pramod Kumar Varshney, Charles A. Kamhoua

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

It has been argued that systems that are comprised of similar components (i.e., a monoculture) are more prone to attacks than a system that exhibits diversity. But it is not currently clear how much diversity is needed and how to leverage the underlying diversity in the design space. In this paper, we present a game theoretic model to analyze strategic attack-defense scenarios as well as present our research and development effort to develop a software tool that facilitates analysis of strategic use of redundancy and diversity techniques for cyber survivability and recoverability by leveraging the developed game theoretic model. The simulator shows the potential of using game theoretic approaches for exploiting diversity for cyber survivability. The game theoretic model illustrates how the concept of the Nash Equilibrium provides a theoretical framework for designing strategic security solutions and how the mixed strategy solution space provides a conceptual basis for defining optimal randomization techniques that can exploit the underlying diversity. The simulator provides capabilities to simulate various attack-defense scenarios, analyze defense tactics, and provide feasible security solutions to help adopt appropriate defense strategies.

Original languageEnglish (US)
Title of host publicationProceedings of IEEE International Symposium on High Assurance Systems Engineering
PublisherIEEE Computer Society
Pages110-113
Number of pages4
Volume2016-March
ISBN (Print)9781467399128
DOIs
StatePublished - Mar 1 2016
Event17th IEEE International Symposium on High Assurance Systems Engineering, HASE 2016 - Orlando, United States
Duration: Jan 7 2016Jan 9 2016

Other

Other17th IEEE International Symposium on High Assurance Systems Engineering, HASE 2016
CountryUnited States
CityOrlando
Period1/7/161/9/16

Keywords

  • Cyber-security simulation
  • Diversity
  • Game Theory

ASJC Scopus subject areas

  • Software
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'CSRS: Cyber Survive and Recover Simulator'. Together they form a unique fingerprint.

  • Cite this

    Brahma, S., Kwiat, K., Varshney, P. K., & Kamhoua, C. A. (2016). CSRS: Cyber Survive and Recover Simulator. In Proceedings of IEEE International Symposium on High Assurance Systems Engineering (Vol. 2016-March, pp. 110-113). [7423141] IEEE Computer Society. https://doi.org/10.1109/HASE.2016.33