We consider the problem of mitigating the effect of malicious cyber-threats spreading across multiple subnets of a data network. Three fundamental issues arise: 1) providing a manageable model of threat propagation; 2) quantifying the danger associated to different subnets; and 3) optimizing the allocation of the countermeasures. We address these issues by providing the following novel contributions. First, a convenient mathematical abstraction of threat propagation is proposed, which employs the birth-and-death process with immigration pioneered by Kendall in his seminal work of 1948. Then, exploiting the notable properties of such a model, we show how to retrieve analytical solutions for optimal resource allocation across subnets, for the case where the parameters of the attack are perfectly known. Finally, the assumption of perfect knowledge is removed, and the unknown attack parameters are estimated using maximum-likelihood estimators.

Cyber-Threat Mitigation Exploiting the Birth-Death-Immigration Model

Matta, Vincenzo;Di Mauro, Mario;Longo, Maurizio;
2018-01-01

Abstract

We consider the problem of mitigating the effect of malicious cyber-threats spreading across multiple subnets of a data network. Three fundamental issues arise: 1) providing a manageable model of threat propagation; 2) quantifying the danger associated to different subnets; and 3) optimizing the allocation of the countermeasures. We address these issues by providing the following novel contributions. First, a convenient mathematical abstraction of threat propagation is proposed, which employs the birth-and-death process with immigration pioneered by Kendall in his seminal work of 1948. Then, exploiting the notable properties of such a model, we show how to retrieve analytical solutions for optimal resource allocation across subnets, for the case where the parameters of the attack are perfectly known. Finally, the assumption of perfect knowledge is removed, and the unknown attack parameters are estimated using maximum-likelihood estimators.
2018
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11386/4721952
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 14
  • ???jsp.display-item.citation.isi??? ND
social impact