TY - GEN

T1 - Network security configurations

T2 - 2010 American Control Conference, ACC 2010

AU - Zhu, Quanyan

AU - Tembine, Hamidou

AU - Başar, Tamer

PY - 2010/10/15

Y1 - 2010/10/15

N2 - In this paper, we study a network security configuration problem. More specifically, we consider distributed intrusion detection systems in a network subject to possible simultaneous attacks launched by a number of attackers. We formulate an N + M-person nonzero-sum stochastic game to capture the interactions among detection systems in the network as well as their interactions against exogenous intruders. We show the existence of stationary Nash equilibrium of the game and a value iteration method to attain an ε-Nash equilibrium. Mimicking the concept of Shannon's capacity in information theory, we propose the notion of security capacity as the largest achievable payoff to an agent at an equilibrium to yield performance limits on the network security. Furthermore, we discuss a mathematical programming approach to characterize the equilibrium as well as the feasibility of a given security target.

AB - In this paper, we study a network security configuration problem. More specifically, we consider distributed intrusion detection systems in a network subject to possible simultaneous attacks launched by a number of attackers. We formulate an N + M-person nonzero-sum stochastic game to capture the interactions among detection systems in the network as well as their interactions against exogenous intruders. We show the existence of stationary Nash equilibrium of the game and a value iteration method to attain an ε-Nash equilibrium. Mimicking the concept of Shannon's capacity in information theory, we propose the notion of security capacity as the largest achievable payoff to an agent at an equilibrium to yield performance limits on the network security. Furthermore, we discuss a mathematical programming approach to characterize the equilibrium as well as the feasibility of a given security target.

UR - http://www.scopus.com/inward/record.url?scp=77957824022&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77957824022&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:77957824022

SN - 9781424474264

T3 - Proceedings of the 2010 American Control Conference, ACC 2010

SP - 1059

EP - 1064

BT - Proceedings of the 2010 American Control Conference, ACC 2010

Y2 - 30 June 2010 through 2 July 2010

ER -