Abstract
This paper models interactions in the cyber environment as a three-way security game between attacker, defender, and user. The paper focuses on understanding and modeling the roles, motivations and conflicting objectives of the players. Unlike most research in cyber security, this paper studies not only technological but also psychosocial aspects of the interactions. The paper develops recommendations for selecting games that have relevant features for representing cyber security interactions and outlines directions for future research.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Anderson, R., Moore, T.: The economics of information security. Science 314, 610–613 (2006)
Bistarelli, S., Fioravanti, F., Peretti, P.: Defense trees for economic evaluation of security investments, Availability, Reliability and Security, IEEE Computer Society (2006)
Ibidunmoye, E.O., Alese, B.K., Ogundele, O.S.: A Game-theoretic scenario for modelling the attacker-defender interaction. J. Comput. Eng. Inf. Technol. 2(1), 27–32 (2013)
Funderberg, D., Tirole, J.: Game Theory. MIT Press, Cambridge (1992)
Herath, T., Rao, H.: Protection motivation and deterrence: a framework for security policy compliance in organisations. Eur. J. Inf. Syst. 18(2), 106–125 (2010)
Furnell, S., Bryant, P., Phippen, A.: Assessing the Security Perceptions of Personal Internet Users. Comput. Secur. 26(5), 410–417 (2007)
Lye, K., Wing, J.: Game strategies in network security. In: Proceedings of the Foundations of Computer Security (2002)
Manshaei, H., Zhu, Q., Alpcan, T., Basar, T., Hubaux, J.P.: Game theory meets network security and privacy. ACM Trans. Comput. Logic 5 (2011)
Perry, T.S., Wallich, P.: Can computer crime be stopped? IEEE Spectr. 21(5), 34–45 (1984)
Roy, S., Ellis, C., Shiva, S., Dasgupta, D., Shandilya, V., Wu, Q.: A survey of game theory as applied to network security. In: System Sciences (HICSS) (2010)
Shapley, L.S.: Stochastic Games. In: Proceedings of the National Academy of Science USA 39: 1095-1100 (1953)
Verendel, V.: Quantified security is a weak hypothesis: a critical survey of results and assumptions. In: Proceedings of the workshop on new security paradigms workshop. ACM (2009)
Acknowledgments
The authors would like to thank Richard John and Heather Rosoff for discussions and feedback that helped develop the ideas expressed in this paper. This research was supported by funding the National Science Foundation under award No. 1314644.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this paper
Cite this paper
Ryutov, T., Orosz, M., Blythe, J., von Winterfeldt, D. (2015). A Game Theoretic Framework for Modeling Adversarial Cyber Security Game Among Attackers, Defenders, and Users. In: Foresti, S. (eds) Security and Trust Management. STM 2015. Lecture Notes in Computer Science(), vol 9331. Springer, Cham. https://doi.org/10.1007/978-3-319-24858-5_18
Download citation
DOI: https://doi.org/10.1007/978-3-319-24858-5_18
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-24857-8
Online ISBN: 978-3-319-24858-5
eBook Packages: Computer ScienceComputer Science (R0)