TY - GEN
T1 - Predictive Cyber Defense Remediation against Advanced Persistent Threat in Cyber-Physical Systems
AU - Hasan, Kamrul
AU - Shetty, Sachin
AU - Islam, Tariqul
AU - Ahmed, Imtiaz
N1 - Publisher Copyright:
© 2022 IEEE.
PY - 2022
Y1 - 2022
N2 - Advanced Persistent Threat (APT) has dramatically changed the landscape of cybersecurity. APT is carried out by stealthy, continuous, sophisticated, and well-funded attack processes for long-term malicious gain thwarting most current defense mechanisms. There is a need for a defense strategy that continuously combats APT over a long time-span in imper-fect/incomplete information on attacker's actions. We propose the stochastic evolutionary game model to simulate the dynamic adversary to address this need in this work. We add the player's rationality parameter c to the Logit Quantal Response Dynamics (LQ RD) model to quantify the cognitive differences of real-world players. We propose an optimal decision-making plan by calculating the stable evolutionary equilibrium that balances a trade-off between defense cost and benefit. Cases studies conducted on Energy Delivery Systems (EDS) indicate that the proposed method can help the defender predict possible attack action, select the related optimal cyber defense remediation over time, and gain the maximum defense payoff.
AB - Advanced Persistent Threat (APT) has dramatically changed the landscape of cybersecurity. APT is carried out by stealthy, continuous, sophisticated, and well-funded attack processes for long-term malicious gain thwarting most current defense mechanisms. There is a need for a defense strategy that continuously combats APT over a long time-span in imper-fect/incomplete information on attacker's actions. We propose the stochastic evolutionary game model to simulate the dynamic adversary to address this need in this work. We add the player's rationality parameter c to the Logit Quantal Response Dynamics (LQ RD) model to quantify the cognitive differences of real-world players. We propose an optimal decision-making plan by calculating the stable evolutionary equilibrium that balances a trade-off between defense cost and benefit. Cases studies conducted on Energy Delivery Systems (EDS) indicate that the proposed method can help the defender predict possible attack action, select the related optimal cyber defense remediation over time, and gain the maximum defense payoff.
KW - APT
KW - Cyber Defense
KW - Cyber-Physical Systems (CPS)
KW - Energy Delivery Systems (EDS)
UR - http://www.scopus.com/inward/record.url?scp=85138406705&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85138406705&partnerID=8YFLogxK
U2 - 10.1109/ICCCN54977.2022.9868886
DO - 10.1109/ICCCN54977.2022.9868886
M3 - Conference contribution
AN - SCOPUS:85138406705
T3 - Proceedings - International Conference on Computer Communications and Networks, ICCCN
BT - ICCCN 2022 - 31st International Conference on Computer Communications and Networks
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 31st International Conference on Computer Communications and Networks, ICCCN 2022
Y2 - 25 July 2022 through 27 July 2022
ER -