计算机应用 ›› 2013, Vol. 33 ›› Issue (05): 1347-1352.DOI: 10.3724/SP.J.1087.2013.01347

• 信息安全 • 上一篇    下一篇

基于非零和攻防博弈模型的主动防御策略选取方法

陈永强,付钰,吴晓平   

  1. 海军工程大学 信息安全系,武汉 430033
  • 收稿日期:2012-10-12 修回日期:2012-12-04 出版日期:2013-05-01 发布日期:2013-05-08
  • 通讯作者: 陈永强
  • 作者简介:陈永强(1981-),男,湖北武汉人,博士研究生,主要研究方向:网络与信息安全、系统性能评价;付钰(1982-),女,湖北武汉人,讲师,博士,主要研究方向:信息系统安全性评估、系统建模与仿真;吴晓平(1961-),男,山西新绛人,教授,博士,主要研究方向:系统分析与决策、密码算法。
  • 基金资助:

    国家自然科学基金资助项目(71171198);湖北省自然科学基金资助项目(2011CDB052)

Active defense strategy selection based on non-zero-sum attack-defense game model

CHEN Yongqiang,FU Yu,WU Xiaoping   

  1. Department of Information Security, Naval University of Engineering, Wuhan Hubei 430033, China
  • Received:2012-10-12 Revised:2012-12-04 Online:2013-05-08 Published:2013-05-01
  • Contact: CHEN Yongqiang

摘要: 针对现实网络攻防环境中防御措施的滞后性以及攻防对抗过程中双方收益不完全相等的问题,提出一种基于非零和博弈的主动防御策略选取方法。首先依据攻击者与系统的博弈关系,结合网络安全问题实际情况提出网络安全博弈图;其次在此基础上给出一种基于非零和博弈的网络攻防博弈模型,结合主机重要度以及防御措施成功率计算单一安全属性攻防收益值,进而根据攻防意图对整体攻防收益进行量化;最后通过分析纳什均衡得到最优主动防御策略。实例验证了该方法在攻击行为预测和主动防御策略选取方面的有效性和可行性。

关键词: 网络安全, 攻防模型, 非零和博弈, 主动防御, 策略选取

Abstract: In order to deal with the problems that defensive measures are lagging behind the attack and that the payoffs of attacker and defender are unequal, an active strategy selection method based on non-zero-sum game was proposed. Firstly, a network security game graph was presented combined with the actual situation of network security and the relationship between the attacker and the defender. Secondly, a network attack-defense game model was proposed based on non-zero-sum game. The attack-defense cost of single security attribute was calculated combined with the host important degree and success rate of defense measures, and according to attack-defense intention, the total attack-defense cost was quantified. Finally, the best strategy for defender was obtained by analyzing the Nash equilibrium of the game model. A representative example was given to illustrate the efficacy and feasibility of the method on attack prediction and active defense strategy selection.

Key words: network security, attack-defense model, non-zero-sum game, active defense, strategy selection

中图分类号: