TY - GEN
T1 - Cumulative prospect theoretic study of a cloud storage defense game against advanced persistent threats
AU - Xu, Dongjin
AU - Xiao, Liang
AU - Mandayam, Narayan B.
AU - Poor, H. Vincent
PY - 2017/11/20
Y1 - 2017/11/20
N2 - Cloud storage is vulnerable to advanced persistent threats (APTs), in which an attacker launches stealthy, continuous, well-funded and targeted attacks on storage devices. In this paper, cumulative prospect theory (CPT) is applied to study the interactions between a defender of cloud storage and an APT attacker when each of them makes subjective decisions to choose the scan interval and attack interval, respectively. Both the probability weighting effect and the framing effect are applied to model the deviation of subjective decisions of end-users from the objective decisions governed by expected utility theory, under uncertain attack durations. Cumulative decision weights are used to describe the probability weighting effect and the value distortion functions are used to represent the framing effect of subjective APT attackers and defenders in the CPT-based APT defense game, rather than discrete decision weights, as in earlier prospect theoretic study of APT defense. The Nash equilibria of the CPT-based APT defense game are derived, showing that a subjective attacker becomes risk-seeking if the frame of reference for evaluating the utility is large, and becomes risk-averse if the frame of reference for evaluating the utility is small.
AB - Cloud storage is vulnerable to advanced persistent threats (APTs), in which an attacker launches stealthy, continuous, well-funded and targeted attacks on storage devices. In this paper, cumulative prospect theory (CPT) is applied to study the interactions between a defender of cloud storage and an APT attacker when each of them makes subjective decisions to choose the scan interval and attack interval, respectively. Both the probability weighting effect and the framing effect are applied to model the deviation of subjective decisions of end-users from the objective decisions governed by expected utility theory, under uncertain attack durations. Cumulative decision weights are used to describe the probability weighting effect and the value distortion functions are used to represent the framing effect of subjective APT attackers and defenders in the CPT-based APT defense game, rather than discrete decision weights, as in earlier prospect theoretic study of APT defense. The Nash equilibria of the CPT-based APT defense game are derived, showing that a subjective attacker becomes risk-seeking if the frame of reference for evaluating the utility is large, and becomes risk-averse if the frame of reference for evaluating the utility is small.
KW - Advanced persistent threat
KW - Cloud storage
KW - Cumulative prospect theory
KW - Game theory
UR - http://www.scopus.com/inward/record.url?scp=85026431787&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85026431787&partnerID=8YFLogxK
U2 - 10.1109/INFCOMW.2017.8116435
DO - 10.1109/INFCOMW.2017.8116435
M3 - Conference contribution
AN - SCOPUS:85026431787
T3 - 2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017
SP - 541
EP - 546
BT - 2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2017 IEEE Conference on Computer Communications Workshops, INFOCOM WKSHPS 2017
Y2 - 1 May 2017 through 4 May 2017
ER -