Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Modeling attacker-defender interactions in information networks.

Technical Report ·
DOI:https://doi.org/10.2172/1008137· OSTI ID:1008137
The simplest conceptual model of cybersecurity implicitly views attackers and defenders as acting in isolation from one another: an attacker seeks to penetrate or disrupt a system that has been protected to a given level, while a defender attempts to thwart particular attacks. Such a model also views all non-malicious parties as having the same goal of preventing all attacks. But in fact, attackers and defenders are interacting parts of the same system, and different defenders have their own individual interests: defenders may be willing to accept some risk of successful attack if the cost of defense is too high. We have used game theory to develop models of how non-cooperative but non-malicious players in a network interact when there is a substantial cost associated with effective defensive measures. Although game theory has been applied in this area before, we have introduced some novel aspects of player behavior in our work, including: (1) A model of how players attempt to avoid the costs of defense and force others to assume these costs; (2) A model of how players interact when the cost of defending one node can be shared by other nodes; and (3) A model of the incentives for a defender to choose less expensive, but less effective, defensive actions.
Research Organization:
Sandia National Laboratories
Sponsoring Organization:
USDOE
DOE Contract Number:
AC04-94AL85000
OSTI ID:
1008137
Report Number(s):
SAND2010-7046
Country of Publication:
United States
Language:
English

Similar Records

Cyber Threat Screening Using a Queuing-Based Game-Theoretic Approach
Journal Article · Sun Dec 01 23:00:00 EST 2019 · Journal of Information Warfare · OSTI ID:1595269
A Sequential Game of Defense and Attack on an Interdependent System of Systems
Conference · Sun Jul 01 00:00:00 EDT 2018 · OSTI ID:1468114
A Sequential Attacker-Defender Game for Distribution Systems Resilience Enhancement Against Extreme Weather Events
Journal Article · Thu Sep 25 20:00:00 EDT 2025 · International Journal of Electrical Power & Energy Systems · OSTI ID:3011923

Related Subjects

99 GENERAL AND MISCELLANEOUS
COMPUTER NETWORKS
GAME THEORY
SIMULATION