Network Inspection Using Heterogeneous Sensors for Detecting Strategic Attacks

Mccann, Bobak
Dahan, Mathieu
Journal Title
Journal ISSN
Volume Title
We consider a two-player network inspection game, in which a defender positions heterogeneous sensors according to a probability distribution in order to detect multiple attacks caused by a strategic attacker. We assume the defender has access to multiple types of sensors that can potentially differ in their accuracy. The objective of the defender (resp. attacker) is to minimize (resp. maximize) the expected number of undetected attacks. We derive a Nash equilibrium of this zero-sum game under the assumption that each component in the network can be monitored from a unique sensor location. We then leverage our constructed Nash equilibrium to provide approximate solutions to the general case by solving a minimum set cover problem. Our results illustrate the performance and computational advantage of our solution approach, as well as the value of strategically leveraging heterogeneous sensors to protect critical networks against attacks.
Organizational Cybersecurity: Advanced Cyber Defense, Cyber Analytics, and Security Operations, cyber-physical security, game theory, network inspection, network resilience, sensor placement
Access Rights
Email if you need this content in ADA-compliant format.