计算机科学与探索 ›› 2020, Vol. 14 ›› Issue (9): 1510-1520.DOI: 10.3778/j.issn.1673-9418.1909042

• 网络与信息安全 • 上一篇    下一篇

移动目标信号博弈的防御最优策略选取

孙岩,姬伟峰,翁江   

  1. 1. 空军工程大学 研究生院,西安 710177
    2. 空军工程大学 信息与导航学院,西安 710177
  • 出版日期:2020-09-01 发布日期:2020-09-07

Selection of Defensive Optimal Strategy for Moving Target Signal Game

SUN Yan, JI Weifeng, WENG Jiang   

  1. 1. Graduate School, Air Force Engineering University, Xi'an 710177, China
    2. Information and Navigation College, Air Force Engineering University, Xi'an 710177, China
  • Online:2020-09-01 Published:2020-09-07

摘要:

从不对称的网络攻防实际情况出发,分析网络攻防对抗具有的动态性、不完全信息性和多阶段性的特点。以信号博弈为框架,采用防御者为信号发起者,利用诱导信号干扰攻击的防御行为模式构建移动目标信号博弈防御模型(MTSGDM)。考虑防御检测系统本身存在无法避免的错检缺陷下提出攻击策略与防御策略的收益量化方法,给出精炼贝叶斯均衡求解算法和先验信念修正算法。分别通过相对防御收益和精炼贝叶斯均衡结果选取最优防御策略及最优诱导信号策略,两种策略的组合能够最大化防御收益。最后通过实例说明并验证该模型和方法的可行性和有效性。在分析实验数据的基础上总结出一般性规律,对网络环境下防御者如何决策具有指导意义。

关键词: 网络空间安全, 信号博弈, 移动目标防御, 最优策略选取

Abstract:

Starting from the actual situation of asymmetric network attack and defense, this paper analyzes the dynamic, incomplete information and multi-stage characteristics of network attack and defense confrontation. Using signal game as the framework, the defender is the signal initiator, and the defense behavior model of the induced signal jamming attack is used to construct the moving target signal game defense model (MTSGDM). Considering the profit quantification method of attack strategy and defense strategy under the defect detection fault that the defense monitoring system itself cannot avoid, the refined Bayesian equilibrium algorithm and the prior belief correction algorithm are given. The optimal defense strategy and the optimal induced signal strategy are selected by the relative defense gain and the refined Bayesian equilibrium result respectively. The combination of the two strategies can maximize the defense gain. Finally, the feasibility and effectiveness of the model and method are illustrated and verified by examples. Based on analyzing the experimental data, the general rules are summarized, which has guiding significance for how the defenders decide in the network environment.

Key words: cyberspace security, signal game, moving target defense, optimal strategy selection