Defense for Advanced Persistent Threat with Inadvertent or Malicious Insider Threats

From MaRDI portal
Publication:6411099

arXiv2209.08476MaRDI QIDQ6411099FDOQ6411099


Authors: Ziqin Chen, Guanpu Chen, Yiguang Hong Edit this on Wikidata


Publication date: 18 September 2022

Abstract: In this paper, we propose a game-theoretical framework to investigate advanced persistent threat problems with two types of insider threats: malicious and inadvertent. Within this framework, a unified three-player game is established and Nash equilibria are obtained in response to different insiders. By analyzing Nash equilibria, we provide quantitative solutions to the advanced persistent threat problems with insider threats. Furthermore, optimal defense strategy and defender's cost comparisons between two insider threats have been performed. The findings suggest that the defender should employ more active defense strategies against inadvertent insider threats than against malicious insider threats, despite the fact that malicious insider threats cost the defender more. Our theoretical analysis is validated by numerical results, including an additional examination of the conditions of the risky strategies adopted by different insiders. This may help the defender in determining monitoring intensities and defensive strategies.













This page was built for publication: Defense for Advanced Persistent Threat with Inadvertent or Malicious Insider Threats

Report a bug (only for logged in users!)Click here to report a bug for this page (MaRDI item Q6411099)

Retrieved from "https://portal.mardi4nfdi.de/w/index.php?title=Publication:6411099&oldid=36070097"
Powered by MediaWiki