A Proactive Defense Strategy to Enhance Situational Awareness in Computer Network Security

2013 ◽  
pp. 1569-1591
Author(s):  
Yi Luo ◽  
Ferenc Szidarovszky
Keyword(s):  
Network Security ◽  
Control Problem ◽  
Adaptive Learning ◽  
Situational Awareness ◽  
Computer Network ◽  
Time Window ◽  
Dynamic Game ◽  
Future Scenarios ◽  
Computer Network Security ◽  
On Line

With the development of situational awareness in intrusion defense, a proactive response is a realistic and effective approach against the attackers. It is assumed that each player can update knowledge of the opponent and assess possible future scenarios of the dynamic game based on their previous interactions. Therefore, finding the best current move of the defender is modeled as a discrete-time stochastic control problem. An on-line, convergent, scenario based proactive defense (SPD) algorithm considering adaptive learning is developed based on differential dynamic programming (DDP) to solve the associated optimal control problem. Numerical experiment shows that the new algorithm can help the defender in finding the best dynamic strategies quickly and efficiently. Moreover, the SPD algorithm can provide optimal defensive efforts against possible future attacks within an appropriate time window, so the success of the attack in the possible future interactions can be assessed, improving situational awareness in computer network security.

A Proactive Defense Strategy to Enhance Situational Awareness in Computer Network Security

2012 ◽  
pp. 48-70
Author(s):  
Yi Luo ◽  
Ferenc Szidarovszky
Keyword(s):  
Network Security ◽  
Control Problem ◽  
Adaptive Learning ◽  
Situational Awareness ◽  
Computer Network ◽  
Time Window ◽  
Dynamic Game ◽  
Future Scenarios ◽  
Computer Network Security ◽  
On Line

With the development of situational awareness in intrusion defense, a proactive response is a realistic and effective approach against the attackers. It is assumed that each player can update knowledge of the opponent and assess possible future scenarios of the dynamic game based on their previous interactions. Therefore, finding the best current move of the defender is modeled as a discrete-time stochastic control problem. An on-line, convergent, scenario based proactive defense (SPD) algorithm considering adaptive learning is developed based on differential dynamic programming (DDP) to solve the associated optimal control problem. Numerical experiment shows that the new algorithm can help the defender in finding the best dynamic strategies quickly and efficiently. Moreover, the SPD algorithm can provide optimal defensive efforts against possible future attacks within an appropriate time window, so the success of the attack in the possible future interactions can be assessed, improving situational awareness in computer network security.

Computer Network Security and Directory Services Architecture

2000 ◽  
Author(s):  
James D. Johannes ◽  
Andrew Fanning ◽  
Kyle Hoover ◽  
Tim Lewis ◽  
Marsha Robinson
Keyword(s):  
Network Security ◽  
Computer Network ◽  
Computer Network Security ◽  
Directory Services

Methods for evaluating the computer network security with fuzzy number intuitionistic fuzzy dual Hamy mean operators

2020 ◽  
Vol 39 (3) ◽  
pp. 4427-4441
Author(s):  
Bin Xu
Keyword(s):  
Network Security ◽  
Membership Function ◽  
Fuzzy Number ◽  
Fuzzy Numbers ◽  
Computer Network ◽  
Information Aggregation ◽  
Security Evaluation ◽  
Uncertain Information ◽  
Intuitionistic Fuzzy ◽  
Computer Network Security

The concept of fuzzy number intuitionistic fuzzy sets (FNIFSs) is designed to effectively depict uncertain information in decision making problems which fundamental characteristic of the FNIFS is that the values of its membership function and non-membership function are depicted with triangular fuzzy numbers (TFNs). The dual Hamy mean (DHM) operator gets good performance in the process of information aggregation due to its ability to capturing the interrelationships among aggregated values. In this paper, we used the dual Hamy mean (DHM) operator and dual weighted Hamy mean (WDHM) operator with fuzzy number intuitionistic fuzzy numbers (FNIFNs) to propose the fuzzy number intuitionistic fuzzy dual Hamy mean (FNIFDHM) operator and fuzzy number intuitionistic fuzzy weighted dual Hamy mean (FNIFWDHM) operator. Then the MADM methods are proposed along with these operators. In the end, we utilize an applicable example for computer network security evaluation to prove the proposed methods.

Sign in / Sign up

Export Citation Format

Share Document