Cumulative prospect theoretic study of a cloud storage defense game against advanced persistent threats

Dongjin Xu, Liang Xiao, Narayan B. Mandayam, H. Vincent Poor

Research output: Chapter in Book/Report/Conference proceedingConference contribution

8 Scopus citations

Abstract

Cloud storage is vulnerable to advanced persistent threats (APTs), in which an attacker launches stealthy, continuous, well-funded and targeted attacks on storage devices. In this paper, cumulative prospect theory (CPT) is applied to study the interactions between a defender of cloud storage and an APT attacker when each of them makes subjective decisions to choose the scan interval and attack interval, respectively. Both the probability weighting effect and the framing effect are applied to model the deviation of subjective decisions of end-users from the objective decisions governed by expected utility theory, under uncertain attack durations. Cumulative decision weights are used to describe the probability weighting effect and the value distortion functions are used to represent the framing effect of subjective APT attackers and defenders in the CPT-based APT defense game, rather than discrete decision weights, as in earlier prospect theoretic study of APT defense. The Nash equilibria of the CPT-based APT defense game are derived, showing that a subjective attacker becomes risk-seeking if the frame of reference for evaluating the utility is large, and becomes risk-averse if the frame of reference for evaluating the utility is small.

Original languageEnglish (US)
Title of host publication2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages541-546
Number of pages6
ISBN (Electronic)9781538627846
DOIs
StatePublished - Nov 20 2017
Event2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017 - Atlanta, United States
Duration: May 1 2017May 4 2017

Publication series

Name2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017

Other

Other2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017
CountryUnited States
CityAtlanta
Period5/1/175/4/17

All Science Journal Classification (ASJC) codes

  • Hardware and Architecture
  • Control and Optimization
  • Artificial Intelligence
  • Computer Networks and Communications

Keywords

  • Advanced persistent threat
  • Cloud storage
  • Cumulative prospect theory
  • Game theory

Fingerprint Dive into the research topics of 'Cumulative prospect theoretic study of a cloud storage defense game against advanced persistent threats'. Together they form a unique fingerprint.

  • Cite this

    Xu, D., Xiao, L., Mandayam, N. B., & Poor, H. V. (2017). Cumulative prospect theoretic study of a cloud storage defense game against advanced persistent threats. In 2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017 (pp. 541-546). [8116435] (2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/INFCOMW.2017.8116435