Int J Performability Eng ›› 2018, Vol. 14 ›› Issue (11): 2633-2642.doi: 10.23940/ijpe.18.11.p9.26332642

Previous Articles     Next Articles

Defensive Strategy Selection based on Attack-Defense Game Model in Network Security

Ningbin Zhang*   

  1. School of Information Engineering of Xi’an University, Xi’an, 710062, China
  • Submitted on ;
  • Contact: * E-mail address:
  • About author:Ningbin Zhang received her M.S. degree in Engineering from Xidian University. She is currently a lecturer in the School of Information Engineering at Xi'an University. Her research interests include database techniques and electronic commerce.

Abstract: Security analysis and attack-defense modeling are effective methods to identify the vulnerabilities of information systems for proactive defense. The attack graph model reflects only attack actions and system state changes, without considering the perspective of the defenders. To assess the network information system and comprehensively show attack and defense strategies and their cost, a defense graph model is proposed. Compared with the attack graph, the model makes some improvements. The defense graph will be mapped to the attack and defense game model, in order to provide a basis for active defense policy decision. Moreover, a generation algorithm of defense graph is proposed. A representative example is provided to illustrate our models and demonstrate the high efficiency of the algorithm.

Key words: network security, active defense, attack-defense game model