PSAM 16 Conference Paper Overview
Welcome to the PSAM 16 Conference paper and speaker overview page.
Lead Author: Yunfei Zhao Co-author(s): Linan Huang (huanglinan29@gmail.com)
Quanyan Zhu (quanyan.zhu@nyu.edu)
Carol Smidts (smidts.1@osu.edu)
| Bayesian games for optimal cybersecurity investment with incomplete information of the attacker |
|---|
| The trend of digitization in various industrial systems has exposed these systems to increasing cyberattacks. Therefore, it is of vital importance to reduce the cybersecurity risk of industrial systems through cost-effective decisions on cybersecurity investment. In making such decisions, the defender is usually faced with the challenge that arises from incomplete information on the attacker. In this paper, we propose a Bayesian games approach to model the optimal cybersecurity investment strategy under such situations. In this approach, the defender categorizes the attacker into a finite number of types, e.g., various levels of capability, and assigns a probability distribution over the different types of attackers. Then the defender optimizes his/her cybersecurity investment based on risk assessment considering the possible attack efforts of these various types of attackers, with the objective of minimizing the expected cyberattack loss and the cybersecurity investment cost. The proposed method is demonstrated using a numerical example. We perform a sensitivity analysis for model parameters that may be difficult to obtain in practical applications, e.g., the loss for the defender caused by a successful attack. Key observations of the example include that the defender should not make any investment if the loss of a successful attack is below a certain threshold, and that losses for one type of attacker may correspond to gains for another type of attacker. The proposed method can be used to support cybersecurity investment decisions by industrial system owners. |
Paper ZH169 Preview
Author and Presentation Info
Lead Author Name: Yunfei Zhao (zhao.2263@osu.edu)
Bio: Dr. Yunfei Zhao is a Research Associate Engineer at The Ohio State University, where he was a Post-doctoral Researcher for 3 years. He earned his doctoral degree in Nuclear Engineering from Tsinghua University and his bachelor’s degree in Thermal Energy Engineering from Shandong University. Dr. Zhao’s research interests include human reliability analysis, cybersecurity, fault diagnostics, and maintenance optimization for complex engineering systems.
Country: United States of America
Company: The Ohio State University
Job Title: Research Associate
Bio: Dr. Yunfei Zhao is a Research Associate Engineer at The Ohio State University, where he was a Post-doctoral Researcher for 3 years. He earned his doctoral degree in Nuclear Engineering from Tsinghua University and his bachelor’s degree in Thermal Energy Engineering from Shandong University. Dr. Zhao’s research interests include human reliability analysis, cybersecurity, fault diagnostics, and maintenance optimization for complex engineering systems.
Country: United States of America
Company: The Ohio State University
Job Title: Research Associate