Network security dynamic defense decision-making method based on space-time game

A dynamic defense and network security technology, applied in the field of network security, can solve the problems of difficulty in accurately and effectively describing the continuous state space of MTD, the inability of the defense terminal to continuously guide, and affect the performance of network defense, so as to improve the continuous decision-making ability and ensure network performance. Effects of overhead, enhanced correctness, and timeliness

Active Publication Date: 2020-11-27
PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
View PDF17 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, most of the existing MTD decision-making research focuses on spatial decision-making (What to Move), and various game methods have been proposed for MTD spatial decision-making frameworks, but the equally important time decision-making (When to Move) has been simplified or ignored. At present, some researchers have begun to study the time decision-making problem, and proposed the MTD space-time decision model

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network security dynamic defense decision-making method based on space-time game
  • Network security dynamic defense decision-making method based on space-time game
  • Network security dynamic defense decision-making method based on space-time game

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030]In order to make the purpose, technical solution and advantages of the present invention more clear and understandable, the present invention will be further described in detail below in conjunction with the accompanying drawings and technical solutions.

[0031] The attack surface is a mainstream modeling method for network defense composed of three types of resources: methods, channels, and data. Based on the two assumptions of the known attack surface of the attacker and the invariance of the attack surface of the defender, it describes the methods used by the attacker to exploit resource vulnerabilities, namely system channel utilization, system method call, and system data interaction. However, moving target defense is a mechanism or strategy that increases the complexity and cost of the attacker's attack by creating, analyzing, evaluating, and deploying a variety of mechanisms or strategies that change continuously over time, and limits and reduces the exposure and ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention belongs to the technical field of network security, and relates to a network security dynamic defense decision-making method based on space-time game. The network security dynamic defense decision-making method comprises the steps of: constructing a multi-dimensional transformation moving target defense model according to network attack and defense dynamic space-time confrontation characteristics, wherein an attack party and a defense party in the multi-dimensional transformation moving target defense model are jointly determined by a detection surface, an attack surface and a detection surface through a network surface for implementing attack and defense strategy control; according to the multi-dimensional transformation moving target defense model, analyzing an attack and defense game process and describing a moving target defense security state evolution process; analyzing a continuous network attack and defense process by utilizing differential game, and constructinga moving target defense space-time decision-making model; and for the moving target defense space-time decision-making model, determining an optimal space-time defense strategy by quantifying attack and defense benefits and solving a saddle point equalization strategy. Based on the game model, the defense decision considering a space strategy and a time strategy is realized, the pertinence and timeliness of the network security defense decision are enhanced, and the network security defense efficiency is improved.

Description

technical field [0001] The invention belongs to the technical field of network security, in particular to a network security dynamic defense decision-making method based on space-time game. Background technique [0002] At present, all kinds of adaptive network attacks are becoming more and more complex and diverse. Among them, Advanced Persistent Threats (APTs) pose great challenges to traditional defense technologies due to their concealment and persistent attack characteristics. The inherent time, cost and information asymmetry characteristics of network offensive and defensive confrontation have won great advantages for attackers. In order to break this asymmetrical situation, Moving Target Defense (MTD) emerged as a very subversive active defense method. Its core idea is to reduce the homogeneity, static and deterministic This property increases the difficulty for an attacker to successfully attack. MTD research should answer the following three questions: (1) spatial...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06G06N20/00
CPCH04L63/1466H04L63/1416H04L63/20G06N20/00
Inventor 张恒巍谭晶磊刘小虎张玉臣王晋东胡浩汪永伟
Owner PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap