Managing the weakest link: A game-theoretic approach for the mitigation of insider threats

Aron Laszka, Benjamin Johnson, Pascal Schöttle, Jens Grossklags, Rainer Böhme

Publikation: Beitrag in Buch/Bericht/KonferenzbandKonferenzbeitragBegutachtung

5 Zitate (Scopus)

Abstract

We introduce a two-player stochastic game for modeling secure team selection to add resilience against insider threats. A project manager, Alice, has a secret she wants to protect but must share with a team of individuals selected from within her organization; while an adversary, Eve, wants to learn this secret by bribing one potential team member. Eve does not know which individuals will be chosen by Alice, but both players have information about the bribeability of each potential team member. Specifically, the amount required to successfully bribe each such individual is given by a random variable with a known distribution but an unknown realization. We characterize best-response strategies for both players, and give necessary conditions for determining the game's equilibria. We find that Alice's best strategy involves minimizing the information available to Eve about the team composition. In particular, she should select each potential team member with a non-zero probability, unless she has a perfectly secure strategy. In the special case where the bribeability of each employee is given by a uniformly-distributed random variable, the equilibria can be divided into two outcomes - either Alice is perfectly secure, or her protection is based only on the randomness of her selection.

OriginalspracheEnglisch
TitelComputer Security, ESORICS 2013 - 18th European Symposium on Research in Computer Security, Proceedings
Seiten273-290
Seitenumfang18
DOIs
PublikationsstatusVeröffentlicht - 2013
Extern publiziertJa
Veranstaltung18th European Symposium on Research in Computer Security, ESORICS 2013 - Egham, Großbritannien/Vereinigtes Königreich
Dauer: 9 Sept. 201313 Sept. 2013

Publikationsreihe

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Band8134 LNCS
ISSN (Print)0302-9743
ISSN (elektronisch)1611-3349

Konferenz

Konferenz18th European Symposium on Research in Computer Security, ESORICS 2013
Land/GebietGroßbritannien/Vereinigtes Königreich
OrtEgham
Zeitraum9/09/1313/09/13

Fingerprint

Untersuchen Sie die Forschungsthemen von „Managing the weakest link: A game-theoretic approach for the mitigation of insider threats“. Zusammen bilden sie einen einzigartigen Fingerprint.

Dieses zitieren