Optimal Security Policy for Protection Against Heterogeneous Malware

Vladislav Taynitskiy, Elena Gubar, Quanyan Zhu

Research output: Chapter in Book/Report/Conference proceedingChapter

Abstract

Malware is a malicious software which aims to disrupt computer operations, gather sensitive information, and gain access to private computer systems. It can induce various sorts of damage, including economic costs, the leakage of private information, and instability of physical systems, etc. The distribution of antivirus patches in a network enables the control of the proliferation of malicious software and decreases possible losses. Multiple types of malware can coexist in a network. Hence it is important to protect a computer network from several heterogeneous malware, which can propagate in the network at the same time. In this study, we model the propagation of two types of malware using a modified two-virus epidemic model. We formulate an optimal control problem that seeks to minimize the total system cost that includes the economic value of security risks and resources required by countermeasures. We introduce an impulse control problem to provide efficient control of the epidemic model compared with its continuous control counterpart. Numerical experiments are used to corroborate the results.

Original languageEnglish (US)
Title of host publicationStatic and Dynamic Game Theory
Subtitle of host publicationFoundations and Applications
PublisherBirkhauser
Pages199-209
Number of pages11
DOIs
StatePublished - Jan 1 2017

Publication series

NameStatic and Dynamic Game Theory: Foundations and Applications
ISSN (Print)2363-8516
ISSN (Electronic)2363-8524

Fingerprint

Malware
Security Policy
Optimal Policy
Epidemic Model
Economics
Impulse Control
Private Information
Software
Costs
Computer Networks
Countermeasures
Proliferation
Leakage
Computer operating procedures
Computer viruses
Sort
Virus
Patch
Optimal Control Problem
Control Problem

Keywords

  • Epidemic process
  • Impulse control
  • Information security
  • Optimal control
  • SIR model

ASJC Scopus subject areas

  • Statistics, Probability and Uncertainty
  • Statistics and Probability
  • Applied Mathematics

Cite this

Taynitskiy, V., Gubar, E., & Zhu, Q. (2017). Optimal Security Policy for Protection Against Heterogeneous Malware. In Static and Dynamic Game Theory: Foundations and Applications (pp. 199-209). (Static and Dynamic Game Theory: Foundations and Applications). Birkhauser. https://doi.org/10.1007/978-3-319-51034-7_19

Optimal Security Policy for Protection Against Heterogeneous Malware. / Taynitskiy, Vladislav; Gubar, Elena; Zhu, Quanyan.

Static and Dynamic Game Theory: Foundations and Applications. Birkhauser, 2017. p. 199-209 (Static and Dynamic Game Theory: Foundations and Applications).

Research output: Chapter in Book/Report/Conference proceedingChapter

Taynitskiy, V, Gubar, E & Zhu, Q 2017, Optimal Security Policy for Protection Against Heterogeneous Malware. in Static and Dynamic Game Theory: Foundations and Applications. Static and Dynamic Game Theory: Foundations and Applications, Birkhauser, pp. 199-209. https://doi.org/10.1007/978-3-319-51034-7_19
Taynitskiy V, Gubar E, Zhu Q. Optimal Security Policy for Protection Against Heterogeneous Malware. In Static and Dynamic Game Theory: Foundations and Applications. Birkhauser. 2017. p. 199-209. (Static and Dynamic Game Theory: Foundations and Applications). https://doi.org/10.1007/978-3-319-51034-7_19
Taynitskiy, Vladislav ; Gubar, Elena ; Zhu, Quanyan. / Optimal Security Policy for Protection Against Heterogeneous Malware. Static and Dynamic Game Theory: Foundations and Applications. Birkhauser, 2017. pp. 199-209 (Static and Dynamic Game Theory: Foundations and Applications).
@inbook{3d31e7f560a94f98871ab83b38c56549,
title = "Optimal Security Policy for Protection Against Heterogeneous Malware",
abstract = "Malware is a malicious software which aims to disrupt computer operations, gather sensitive information, and gain access to private computer systems. It can induce various sorts of damage, including economic costs, the leakage of private information, and instability of physical systems, etc. The distribution of antivirus patches in a network enables the control of the proliferation of malicious software and decreases possible losses. Multiple types of malware can coexist in a network. Hence it is important to protect a computer network from several heterogeneous malware, which can propagate in the network at the same time. In this study, we model the propagation of two types of malware using a modified two-virus epidemic model. We formulate an optimal control problem that seeks to minimize the total system cost that includes the economic value of security risks and resources required by countermeasures. We introduce an impulse control problem to provide efficient control of the epidemic model compared with its continuous control counterpart. Numerical experiments are used to corroborate the results.",
keywords = "Epidemic process, Impulse control, Information security, Optimal control, SIR model",
author = "Vladislav Taynitskiy and Elena Gubar and Quanyan Zhu",
year = "2017",
month = "1",
day = "1",
doi = "10.1007/978-3-319-51034-7_19",
language = "English (US)",
series = "Static and Dynamic Game Theory: Foundations and Applications",
publisher = "Birkhauser",
pages = "199--209",
booktitle = "Static and Dynamic Game Theory",

}

TY - CHAP

T1 - Optimal Security Policy for Protection Against Heterogeneous Malware

AU - Taynitskiy, Vladislav

AU - Gubar, Elena

AU - Zhu, Quanyan

PY - 2017/1/1

Y1 - 2017/1/1

N2 - Malware is a malicious software which aims to disrupt computer operations, gather sensitive information, and gain access to private computer systems. It can induce various sorts of damage, including economic costs, the leakage of private information, and instability of physical systems, etc. The distribution of antivirus patches in a network enables the control of the proliferation of malicious software and decreases possible losses. Multiple types of malware can coexist in a network. Hence it is important to protect a computer network from several heterogeneous malware, which can propagate in the network at the same time. In this study, we model the propagation of two types of malware using a modified two-virus epidemic model. We formulate an optimal control problem that seeks to minimize the total system cost that includes the economic value of security risks and resources required by countermeasures. We introduce an impulse control problem to provide efficient control of the epidemic model compared with its continuous control counterpart. Numerical experiments are used to corroborate the results.

AB - Malware is a malicious software which aims to disrupt computer operations, gather sensitive information, and gain access to private computer systems. It can induce various sorts of damage, including economic costs, the leakage of private information, and instability of physical systems, etc. The distribution of antivirus patches in a network enables the control of the proliferation of malicious software and decreases possible losses. Multiple types of malware can coexist in a network. Hence it is important to protect a computer network from several heterogeneous malware, which can propagate in the network at the same time. In this study, we model the propagation of two types of malware using a modified two-virus epidemic model. We formulate an optimal control problem that seeks to minimize the total system cost that includes the economic value of security risks and resources required by countermeasures. We introduce an impulse control problem to provide efficient control of the epidemic model compared with its continuous control counterpart. Numerical experiments are used to corroborate the results.

KW - Epidemic process

KW - Impulse control

KW - Information security

KW - Optimal control

KW - SIR model

UR - http://www.scopus.com/inward/record.url?scp=85059082185&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85059082185&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-51034-7_19

DO - 10.1007/978-3-319-51034-7_19

M3 - Chapter

T3 - Static and Dynamic Game Theory: Foundations and Applications

SP - 199

EP - 209

BT - Static and Dynamic Game Theory

PB - Birkhauser

ER -