Security and interdependency in a public cloud: A game-theoretic approach

Charles A. Kamhoua; Luke Kwiat; Kevin A. Kwiat; Joon S. Park; Ming Zhao; Manuel Rodriguez

doi:10.1007/978-3-319-75268-6_11

Security and interdependency in a public cloud: A game-theoretic approach

Charles A. Kamhoua, Luke Kwiat, Kevin A. Kwiat, Joon S. Park, Ming Zhao, Manuel Rodriguez

Research output: Chapter in Book/Report/Conference proceeding › Chapter

3 Scopus citations

Abstract

As cloud computing thrives, many organizations - both large and small - are taking advantage of the multiple benefits of joining a public cloud. Public cloud computing is cost-effective: a cloud user can reduce spending on technology infrastructure and have easy access to their information without an up-front or long-term commitment of resources. Despite such benefits, concern over cyber security deters many large organizations with sensitive information to use a public cloud such as the Department of Defense. This is because different public cloud users share a common platform such as the hypervisor. An attacker can compromise a virtual machine (VM) to launch an attack on the hypervisor which, if compromised, can instantly yield the compromising of all the VMs running on top of that hypervisor. In this paper we evaluate the cloud user-attacker dynamic using game theory, which models competition among rational agents. This work will show that there are multiple Nash equilibria of the public cloud game. The Nash equilibrium profile that results will be shown to depend on several factors, including the probability that the hypervisor is compromised given a successful attack on a user and the total expense required to invest in security.

Original language	English (US)
Title of host publication	Static and Dynamic Game Theory
Subtitle of host publication	Foundations and Applications
Publisher	Birkhauser
Pages	253-284
Number of pages	32
DOIs	https://doi.org/10.1007/978-3-319-75268-6_11
State	Published - 2018

Publication series

Name	Static and Dynamic Game Theory: Foundations and Applications
ISSN (Print)	2363-8516
ISSN (Electronic)	2363-8524

ASJC Scopus subject areas

Statistics and Probability
Statistics, Probability and Uncertainty
Applied Mathematics

Access to Document

10.1007/978-3-319-75268-6_11

Cite this

@inbook{e7032a351c294b06856ea7cf0d8860dc,

title = "Security and interdependency in a public cloud: A game-theoretic approach",

abstract = "As cloud computing thrives, many organizations - both large and small - are taking advantage of the multiple benefits of joining a public cloud. Public cloud computing is cost-effective: a cloud user can reduce spending on technology infrastructure and have easy access to their information without an up-front or long-term commitment of resources. Despite such benefits, concern over cyber security deters many large organizations with sensitive information to use a public cloud such as the Department of Defense. This is because different public cloud users share a common platform such as the hypervisor. An attacker can compromise a virtual machine (VM) to launch an attack on the hypervisor which, if compromised, can instantly yield the compromising of all the VMs running on top of that hypervisor. In this paper we evaluate the cloud user-attacker dynamic using game theory, which models competition among rational agents. This work will show that there are multiple Nash equilibria of the public cloud game. The Nash equilibrium profile that results will be shown to depend on several factors, including the probability that the hypervisor is compromised given a successful attack on a user and the total expense required to invest in security.",

author = "Kamhoua, {Charles A.} and Luke Kwiat and Kwiat, {Kevin A.} and Park, {Joon S.} and Ming Zhao and Manuel Rodriguez",

note = "Funding Information: This research was performed while Dr. Joon Park and Dr. Manuel Rodriguez held a National Research Council (NRC) Research Associateship Award at the Air Force Research Laboratory (AFRL). This research was supported by the Air Force Office of Scientific Research (AFOSR). “Approved for Public Release; Distribution Unlimited: 88ABW-2013-5145.” Publisher Copyright: {\textcopyright} Springer International Publishing AG, part of Springer Nature 2018.",

year = "2018",

doi = "10.1007/978-3-319-75268-6_11",

language = "English (US)",

series = "Static and Dynamic Game Theory: Foundations and Applications",

publisher = "Birkhauser",

pages = "253--284",

booktitle = "Static and Dynamic Game Theory",

}

TY - CHAP

T1 - Security and interdependency in a public cloud

T2 - A game-theoretic approach

AU - Kamhoua, Charles A.

AU - Kwiat, Luke

AU - Kwiat, Kevin A.

AU - Park, Joon S.

AU - Zhao, Ming

AU - Rodriguez, Manuel

N1 - Funding Information: This research was performed while Dr. Joon Park and Dr. Manuel Rodriguez held a National Research Council (NRC) Research Associateship Award at the Air Force Research Laboratory (AFRL). This research was supported by the Air Force Office of Scientific Research (AFOSR). “Approved for Public Release; Distribution Unlimited: 88ABW-2013-5145.” Publisher Copyright: © Springer International Publishing AG, part of Springer Nature 2018.

PY - 2018

Y1 - 2018

N2 - As cloud computing thrives, many organizations - both large and small - are taking advantage of the multiple benefits of joining a public cloud. Public cloud computing is cost-effective: a cloud user can reduce spending on technology infrastructure and have easy access to their information without an up-front or long-term commitment of resources. Despite such benefits, concern over cyber security deters many large organizations with sensitive information to use a public cloud such as the Department of Defense. This is because different public cloud users share a common platform such as the hypervisor. An attacker can compromise a virtual machine (VM) to launch an attack on the hypervisor which, if compromised, can instantly yield the compromising of all the VMs running on top of that hypervisor. In this paper we evaluate the cloud user-attacker dynamic using game theory, which models competition among rational agents. This work will show that there are multiple Nash equilibria of the public cloud game. The Nash equilibrium profile that results will be shown to depend on several factors, including the probability that the hypervisor is compromised given a successful attack on a user and the total expense required to invest in security.

AB - As cloud computing thrives, many organizations - both large and small - are taking advantage of the multiple benefits of joining a public cloud. Public cloud computing is cost-effective: a cloud user can reduce spending on technology infrastructure and have easy access to their information without an up-front or long-term commitment of resources. Despite such benefits, concern over cyber security deters many large organizations with sensitive information to use a public cloud such as the Department of Defense. This is because different public cloud users share a common platform such as the hypervisor. An attacker can compromise a virtual machine (VM) to launch an attack on the hypervisor which, if compromised, can instantly yield the compromising of all the VMs running on top of that hypervisor. In this paper we evaluate the cloud user-attacker dynamic using game theory, which models competition among rational agents. This work will show that there are multiple Nash equilibria of the public cloud game. The Nash equilibrium profile that results will be shown to depend on several factors, including the probability that the hypervisor is compromised given a successful attack on a user and the total expense required to invest in security.

UR - http://www.scopus.com/inward/record.url?scp=85052373572&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85052373572&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-75268-6_11

DO - 10.1007/978-3-319-75268-6_11

M3 - Chapter

AN - SCOPUS:85052373572

T3 - Static and Dynamic Game Theory: Foundations and Applications

SP - 253

EP - 284

BT - Static and Dynamic Game Theory

PB - Birkhauser

ER -

Security and interdependency in a public cloud: A game-theoretic approach

Abstract

Publication series

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this