An Intrusion Detection game in access control system for the M2M local cloud platform

Author

Anggorojati, Bayu ; Prasad, Neeli Rashmi ; Prasad, Ranga

Author_Institution

Center for TeleInFrastruktur (CTIF), Aalborg Univ., Aalborg, Denmark

fYear

2013

fDate

29-31 Aug. 2013

Firstpage

345

Lastpage

350

Abstract

A distributed M2M local cloud platform which consists of distributed M2M gateways, needs to be equipped with an Intrusion Detection System (IDS) to monitor its resources against security attacks, especially from the insider, e.g. another gateway within the local cloud. In this paper, the interaction between rational attacker and defender in the context of an M2M local cloud platform as a multi-stage Bayesian game is studied. In this game formulation, a defender is able to update its belief upon the maliciousness of the attacker. The feasible Nash equilibrium of the game is reviewed and an analytical framework for the rational attacker and defender is provided for a given set of resources with different security values under some constraints on the attack and monitor resources. In the numerical analysis, it can be shown that by having multiple resources to be attacked and/or monitored simultaneously provides a kind of diversity which helps to improve the belief update of the defender.

Keywords

authorisation; cloud computing; game theory; IDS; Nash equilibrium; access control system; defender; distributed M2M gateways; distributed M2M local cloud platform; intrusion detection game; intrusion detection system; machine-to-machine system; multistage Bayesian game; rational attacker; Bayes methods; Games; History; Intrusion detection; Logic gates; Monitoring; Game theory; M2M; access control; cloud; intrusion detection;

fLanguage

English

Publisher

ieee

Conference_Titel

Communications (APCC), 2013 19th Asia-Pacific Conference on

Conference_Location

Denpasar

Print_ISBN

978-1-4673-6048-7

Type

conf

DOI

10.1109/APCC.2013.6765968

Filename

6765968