Network security risk assessment depends on the prediction of attacker's behavioral decision. In computer network attack and defense area, this kind of decision is the optimal judgment for attackers and defenders themselves in consideration of the opponents' strategy spaces. Thus, The attack and defend behavior can be seen as a game process. In this paper, we studied how to bring Game Theory into the research area of network security risk assessment. First, we analyze the concept and the process of risk assessment to find the combining point where game theory can be used in network security risk assessment. Then we present a risk assessment framework based on game theory, and set up a risk assessment system using this framework. We emphatically introduce GTADM (Game Theoretical Attack-Defense Model) and HRCM (Hierarchical Risk Computing Model) in the system, and provide detailed analysis and specification by a scenario. © 2008 IEEE.
CITATION STYLE
He, W., Xia, C., Zhang, C., Ji, Y., & Ma, X. (2008). A network security risk assessment framework based on Game Theory. In Proceedings of the 2008 2nd International Conference on Future Generation Communication and Networking, FGCN 2008 (Vol. 2, pp. 249–253). https://doi.org/10.1109/FGCN.2008.166
Mendeley helps you to discover research relevant for your work.