CN107070956B - 基于动态贝叶斯博弈的apt攻击预测方法 - Google Patents
基于动态贝叶斯博弈的apt攻击预测方法 Download PDFInfo
- Publication number
- CN107070956B CN107070956B CN201710457071.8A CN201710457071A CN107070956B CN 107070956 B CN107070956 B CN 107070956B CN 201710457071 A CN201710457071 A CN 201710457071A CN 107070956 B CN107070956 B CN 107070956B
- Authority
- CN
- China
- Prior art keywords
- attack
- game
- attacker
- defender
- income
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 35
- 230000003542 behavioural effect Effects 0.000 claims abstract description 10
- 230000008260 defense mechanism Effects 0.000 claims description 10
- 230000008569 process Effects 0.000 claims description 10
- 238000001514 detection method Methods 0.000 claims description 9
- 230000007123 defense Effects 0.000 claims description 5
- 230000002265 prevention Effects 0.000 claims description 5
- 208000001613 Gambling Diseases 0.000 claims description 4
- 230000001568 sexual effect Effects 0.000 claims 1
- 230000008901 benefit Effects 0.000 description 5
- 206010021703 Indifference Diseases 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 2
- 230000008859 change Effects 0.000 description 2
- 238000006243 chemical reaction Methods 0.000 description 2
- 241000208340 Araliaceae Species 0.000 description 1
- 235000005035 Panax pseudoginseng ssp. pseudoginseng Nutrition 0.000 description 1
- 235000003140 Panax quinquefolius Nutrition 0.000 description 1
- 238000012937 correction Methods 0.000 description 1
- 239000004744 fabric Substances 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 235000008434 ginseng Nutrition 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 239000011800 void material Substances 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/147—Network analysis or design for predicting network behaviour
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/142—Network analysis or design using statistical or mathematical methods
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
Description
Claims (7)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710457071.8A CN107070956B (zh) | 2017-06-16 | 2017-06-16 | 基于动态贝叶斯博弈的apt攻击预测方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710457071.8A CN107070956B (zh) | 2017-06-16 | 2017-06-16 | 基于动态贝叶斯博弈的apt攻击预测方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107070956A CN107070956A (zh) | 2017-08-18 |
CN107070956B true CN107070956B (zh) | 2019-11-08 |
Family
ID=59594652
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710457071.8A Active CN107070956B (zh) | 2017-06-16 | 2017-06-16 | 基于动态贝叶斯博弈的apt攻击预测方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107070956B (zh) |
Families Citing this family (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108322478B (zh) * | 2018-03-05 | 2020-09-04 | 西安邮电大学 | 一种基于攻防博弈的网站防御策略选取方法 |
CN109194685A (zh) * | 2018-10-12 | 2019-01-11 | 天津大学 | 基于安全博弈论的中间人攻击防御策略 |
CN110191083B (zh) * | 2019-03-20 | 2020-09-25 | 中国科学院信息工程研究所 | 面向高级持续性威胁的安全防御方法、装置与电子设备 |
CN110278198B (zh) * | 2019-06-04 | 2021-09-07 | 西安邮电大学 | 基于博弈论的网络中资产的安全风险评估方法 |
CN110417733B (zh) * | 2019-06-24 | 2021-09-10 | 中国人民解放军战略支援部队信息工程大学 | 基于qbd攻防随机演化博弈模型的攻击预测方法、装置及系统 |
CN110365713B (zh) * | 2019-08-22 | 2021-12-14 | 中国科学技术大学 | 针对高级持续性威胁的网络防御资源最优分配方法 |
CN113761520B (zh) * | 2020-06-01 | 2024-04-12 | 中移(苏州)软件技术有限公司 | 一种检测防御方法、服务器和存储介质 |
CN112003854B (zh) * | 2020-08-20 | 2023-03-24 | 中国人民解放军战略支援部队信息工程大学 | 基于时空博弈的网络安全动态防御决策方法 |
CN114666107B (zh) * | 2022-03-04 | 2024-06-04 | 北京工业大学 | 移动雾计算中一种高级持续性威胁防御方法 |
CN115208618B (zh) * | 2022-05-24 | 2024-05-14 | 华北电力大学 | 基于多层次攻防博弈的新型电力系统apt攻击主动防御方法 |
CN117040809B (zh) * | 2023-07-20 | 2024-04-05 | 浙江大学 | 基于贝叶斯随机博弈的工业信息物理系统防御策略生成方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101808020A (zh) * | 2010-04-19 | 2010-08-18 | 吉林大学 | 基于不完全信息动态博弈的入侵响应决策方法 |
CN105024976A (zh) * | 2014-04-24 | 2015-11-04 | 中国移动通信集团山西有限公司 | 一种高级持续威胁攻击识别方法及装置 |
CN106789906A (zh) * | 2016-11-22 | 2017-05-31 | 全球能源互联网研究院 | 博弈数据分析方法及装置 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8224681B2 (en) * | 2007-10-15 | 2012-07-17 | University Of Southern California | Optimizing a security patrolling strategy using decomposed optimal Bayesian Stackelberg solver |
-
2017
- 2017-06-16 CN CN201710457071.8A patent/CN107070956B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101808020A (zh) * | 2010-04-19 | 2010-08-18 | 吉林大学 | 基于不完全信息动态博弈的入侵响应决策方法 |
CN105024976A (zh) * | 2014-04-24 | 2015-11-04 | 中国移动通信集团山西有限公司 | 一种高级持续威胁攻击识别方法及装置 |
CN106789906A (zh) * | 2016-11-22 | 2017-05-31 | 全球能源互联网研究院 | 博弈数据分析方法及装置 |
Non-Patent Citations (4)
Title |
---|
信号博弈网络安全威胁评估方法;张恒巍等;《西安电子科技大学学报》;20150727(第03期);全文 * |
基于动态博弈的空间目标行为预测与决策方法;张鹏等;《系统仿真学报》;20091220;全文 * |
基于动态贝叶斯博弈的攻击预测模型;曹晖等;《计算机应用》;20070601(第06期);全文 * |
基于贝叶斯博弈的攻击预测模型;曹晖;《中国优秀硕士学位论文全文数据库 信息科技辑》;20071015;摘要及正文第2-5章 * |
Also Published As
Publication number | Publication date |
---|---|
CN107070956A (zh) | 2017-08-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107070956B (zh) | 基于动态贝叶斯博弈的apt攻击预测方法 | |
CN110191083B (zh) | 面向高级持续性威胁的安全防御方法、装置与电子设备 | |
CN110300106B (zh) | 基于Markov时间博弈的移动目标防御决策选取方法、装置及系统 | |
CN107147670B (zh) | 基于博弈体系的apt防御方法 | |
Huang et al. | Adaptive strategic cyber defense for advanced persistent threats in critical infrastructure networks | |
Jormakka et al. | Modelling information warfare as a game | |
CN110460572B (zh) | 基于Markov信号博弈的移动目标防御策略选取方法及设备 | |
CN110035066B (zh) | 一种基于博弈论的攻防行为量化评估方法及系统 | |
Laszka et al. | Mitigating covert compromises: A game-theoretic model of targeted and non-targeted covert attacks | |
CN108898010A (zh) | 一种建立面向恶意代码防御的攻防随机博弈模型的方法 | |
Cranford et al. | Adaptive cyber deception: Cognitively informed signaling for cyber defense | |
Schulzke | The politics of attributing blame for cyberattacks and the costs of uncertainty | |
CN109327427A (zh) | 一种面对未知威胁的动态网络变化决策方法及其系统 | |
CN109714364A (zh) | 一种基于贝叶斯改进模型的网络安全防御方法 | |
CN111245828A (zh) | 一种基于三方动态博弈的防御策略产生方法 | |
Hausken et al. | Active vs. passive defense against a strategic attacker | |
Li et al. | Mining blocks in a row: A statistical study of fairness in bitcoin mining | |
Wan et al. | Foureye: Defensive deception against advanced persistent threats via hypergame theory | |
Li et al. | Anti-honeypot enabled optimal attack strategy for industrial cyber-physical systems | |
Han et al. | Fact and fiction: Challenging the honest majority assumption of permissionless blockchains | |
CN112003854B (zh) | 基于时空博弈的网络安全动态防御决策方法 | |
Stockburger | Known unknowns: state cyber operations, cyber warfare, and the jus ad bellum | |
CN113098908B (zh) | 一种基于多阶段博弈的虚假数据注入攻击防御方法及装置 | |
Kanniainen | Cyber technology and the arms race | |
Zhang et al. | Time-manipulation attack: Breaking fairness against proof of authority Aura |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Apt attack prediction method based on Dynamic Bayesian game Effective date of registration: 20220328 Granted publication date: 20191108 Pledgee: Pudong Development Bank of Shanghai Limited by Share Ltd. Fuzhou branch Pledgor: FUJIAN ZHONGXIN WANG 'AN INFORMATION TECHNOLOGY CO.,LTD. Registration number: Y2022350000036 |
|
CB03 | Change of inventor or designer information | ||
CB03 | Change of inventor or designer information |
Inventor after: He Ying Inventor after: Shen Chucheng Inventor after: Yang Yeliang Inventor after: Wu Cuiyun Inventor after: Lin Jie Inventor before: He Ying Inventor before: Shen Chucheng Inventor before: Yang Yeliang Inventor before: Wu Cuiyun Inventor before: Lin Jie |