rethinking about paper: network security configurations---a nonzero-sum stochastic game approach

In this paper, the author presented an N+M-person stochastic game model for network security configurations to balance between the security and usability of complex cooperative networked control system. The paper focuses on the configuration problems of intrusion detection systems but we can see that the game-theoretic framework is general enough to be extended to address concerns regarding other network security problems, like intrusion response system, using to choose a best response method.

Besides, this paper has proposed a new notion of security capacity to denote the security performance, and characterize a feasibility problem of a nonlinear program. This notion could be further used to do as security metrics in problems like jamming and secure routing.

IDEA: we could extend this work to the case in which defenders and attackers have imperfect monitoring or partial observations of the states and consider games with asymmetric information between defenders and attackers.

DONE: a simple prisoner dilemma has been simulated in matlab. It's a two-player game with four types of payoffs. just a test, need to consider more about this.

TO DO tomorrow: paper reading on <A Game-Theoretical Approach to Incentive Design in Collaborative IDS Networks>, try to find out how to do such experiment.