A Markov Game Theory-Based Risk Assessment Model for Network Information System

Author

Xiaolin, Cui ; Xiaobin, Tan ; Yong, Zhang ; Hongsheng, Xi

Author_Institution

Dept. of Autom., Univ. of Sci. & Technol. of China, Hefei

Volume

3

fYear

2008

fDate

12-14 Dec. 2008

Firstpage

1057

Lastpage

1061

Abstract

Risk assessment is a very important tool to acquire a present and future security status of the network information system. Many risk assessment approaches consider the present system security status, while the future security status, which also has an impact on assessing the system risk, is not taken into consideration. In this paper we propose a novel risk assessment model based on Markov game theory. In this model, all of the possible risk in the future will impact on the present risk assessment. The farther away from now, the smaller impact on the risk assessment it has. After acquiring the system security status, we proposed an automatic generated reinforcement scheme which will provide a great convenience to the system administrator. A software tool is developed to demonstrate the performance of the risk assessment of a network information system and a simulation example shows the effectiveness of the proposed model.

Keywords

Internet; Markov processes; game theory; information systems; risk management; security of data; Internet; Markov game theory; automatic generated reinforcement scheme; network information system security; risk assessment model; software tool; system administrator; Automation; Computer science; Game theory; IEC standards; ISO standards; Information security; Information systems; National security; Risk management; Software engineering; Markov game theory; risk assessment; threat transmission;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Software Engineering, 2008 International Conference on

Conference_Location

Wuhan, Hubei

Print_ISBN

978-0-7695-3336-0

Type

conf

DOI

10.1109/CSSE.2008.949

Filename

4722524