Online Algorithms for Adaptive Cyber Defense on Bayesian Attack Graphs
| Title | Online Algorithms for Adaptive Cyber Defense on Bayesian Attack Graphs |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Hu, Zhisheng, Zhu, Minghui, Liu, Peng |
| Conference Name | Proceedings of the 2017 Workshop on Moving Target Defense |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-5176-8 |
| Keywords | adaptive cyber defense, bayesian attack graphs, composability, defense, Metrics, moving target defense, Network security, online learning, pomdp, pubcrawl, Resiliency, Zero day attacks |
| Abstract | Emerging zero-day vulnerabilities in information and communications technology systems make cyber defenses very challenging. In particular, the defender faces uncertainties of; e.g., system states and the locations and the impacts of vulnerabilities. In this paper, we study the defense problem on a computer network that is modeled as a partially observable Markov decision process on a Bayesian attack graph. We propose online algorithms which allow the defender to identify effective defense policies when utility functions are unknown a priori. The algorithm performance is verified via numerical simulations based on real-world attacks. |
| URL | https://dl.acm.org/citation.cfm?doid=3140549.3140556 |
| DOI | 10.1145/3140549.3140556 |
| Citation Key | hu_online_2017 |