Applied and Computational Engineering

- The Open Access Proceedings Series for Conferences


Proceedings of the 4th International Conference on Computing and Data Science (CONF-CDS 2022)

Series Vol. 2 , 22 March 2023

Open Access | Article

Towards a Secure Fog-Computing Cyber Space: A Bayesian Game-Theoretic Risk Management Framework

David Akinwumi * 1 , Arome Junior Gabriel 2 , Raphael Olufemi Akinyede 3 , Samuel Adebayo Oluwadare 4 , Boniface Kayode Alese 5
1 Computer Science Department, Adekunle Ajasin University, Akungba-Akoko, Nigeria.
2 Cyber Security Department, Federal University of Technology, PMB 704, Akure, Nigeria.
3 Information Systems Department, Federal University of Technology, Akure, Nigeria.
4 Computer Science Department, Federal University of Technology, Akure, Nigeria.
5 Cyber Security Department, Federal University of Technology, PMB 704, Akure, Nigeria.

* Author to whom correspondence should be addressed.

Applied and Computational Engineering, Vol. 2, 119-131
Published 22 March 2023. © 2023 The Author(s). Published by EWA Publishing
This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Citation David Akinwumi, Arome Junior Gabriel, Raphael Olufemi Akinyede, Samuel Adebayo Oluwadare, Boniface Kayode Alese. Towards a Secure Fog-Computing Cyber Space: A Bayesian Game-Theoretic Risk Management Framework. ACE (2023) Vol. 2: 119-131. DOI: 10.54254/2755-2721/2/20220611.

Abstract

Cyber security is one of the most difficult and fast-growing concerns today's enterprises are focusing on. The practice of reducing potentially damaging and unknown events that pose a danger to cyber security is known as cyber security risk management. The Game Theoretic Approach is a popular cyber security risk or threat management strategy (GTA). This study provides a paradigm for cybersecurity risk or threat handling based on a game-theoretic approach to Fog computing, which will encourage proactive cyber risk management and improve cyber-operational efficiency/effectiveness. The method is written in such a way that the PyQt4 framework acts as a shield for the Fog server, performing inline packet inspection and logging any malicious packets to the console and a database on the server using Snort. The study proposes a Bayesian game model for risk management in the cyber domain.

Keywords

Risk Management, Cyber Security, Game Theory, Cloud Computing, Fog Computing

References

1. Gabriel A. J. (2020) Appliance Scheduling towards Energy Management in IoT Networks using Bacteria Foraging Optimization (BFO) Algorithm. In: A.E. Hassanien et al. (eds.), Artificial Intelligence for Sustainable Development: Theory, Practice and Future Applications, Stud-ies in Computational Intelligence 912, pp. 290-310. Springer, Nature Switzerland. https://doi.org/10.1007/978-3-030-51920-9_15.

2. Alese, B.K., Gabriel A. J., Olukayode O. and Daramola O.A. (2014); Modelling of Risk Man-agement Procedures for Cybercrime Control Systems; The 2014 International Conference of Information Security and Internet Engineering; World Congress on Engineering, ISBN 978-988-19252-7-7; 505-509.

3. Alese B. K., Gabriel A. J., Ayodele T. and Akinsowon O. A. (2016) “Cost-Benefit Analysis of Cyber-Security Systems”. Proceedings of the World Congress on Engineering and Comput-er Science 2016. Vol I, WCECS 2016, October 19-21, 2016, San Francisco

4. Thompson, A., Abayomi, A., Gabriel, A.J. (2022). Multifactor IoT Authentication System for Smart Homes Using Visual Cryptography, Digital Memory, and Blockchain Technologies. In: Misra, S., Kumar Tyagi, A. (eds) Blockchain Applications in the Smart Era. EAI/Springer Innovations in Communication and Computing. Springer, Cham. https://doi.org/10.1007/978-3-030-89546-4_14

5. X.G. Shan, J. Zhuang (2020). A game-theoretic approach to modelling attacks and defences of smart grids at three levels, Reliability Engineering & System Safety. Vol. 195. DOI: 10.1016/j.ress.2019.106683.

6. E. Bagtug, M. Bennis, and M. Debbah, (2014). Living on the Edge: The Role of Proactive Caching in 5G Wireless Networks. IEEE Commun. Mag., 52, 82–89.

7. Stojmenovic I. (2014) “The Fog Computing Paradigm : Scenarios and Security Issues,” vol. 2, pp. 18.

8. P. Liu, W. Zang, and M. Yu, (2005). Incentive-based modeling and inference of attacker intent, objectives and strategies. ACM Transactions on Information and System Security, 8(1), 78–118.

9. S. Hansman, and R. Hunt, (2005). A taxonomy of network and computer attacks. Computers and Security, February 2005., 24, 31–43.

10. K. C. Nguyen, T. Alpcan, and T. Basar, (2009). Stochastic games for security in networks with interdependent nodes. Proc. Of Intl. Conf. on Game Theory for Networks (GameNets)

11. F. He, J. Zhuang, and N. S. V. Rao, (2012). Game-Theoretic Analysis of Attack and Defence in Cyber-Physical Network Infrastructures. In Proceedings of the 2012 Industrial and Sys-tems Engineering Research Conference G. Lim and J.W. Herrmann, eds.

12. B. K. Alese, G. B. Iwasokun, and D. I. Haruna, (2013). DGM Approach to Network Attacker and Defender Strategies. In ’Information Security’ A Conference Proceedings on Interna-tional Conference for Internet World Congress on Internet Security Technologies and Se-cured Transactions ICITST.

13. E. O. Ibidunmoye, B. K. Alese, and O. S. Ogundele, (2013). Modeling Attacker-Defender In-teraction as a Zero- Sum Stochastic Game. Journal of Computer Sciences and Applications, 1(2), 27–32.

14. S. Garg, and G. S. Aujla, (2014). An Attack Tree Based Comprehensive Framework for the Risk and Security Assessment of VANET using the Concepts of Game Theory and Fuzzy Logic. Journal Of Emerging Technologies In Web Intelligence, 6(2).

15. C. Kamhoua, A. Martin, D. K. Tosh, K. A. Kwiat, C. Heitzenrater, and S. Sengupta, (2015). Cyber-threats Information Sharing in Cloud Computing : A game Theoretic Approach, 382–389. http://doi.org/10.1109/CSCloud.2015.8.

16. L. Maghrabi, (2015). Moving Assets to the Cloud : A Game Theoretic Approach Based on Trust.

17. S. Garg, and G. S. Aujla, (2016). Accessing Risk Priority of SSL SYN Attack using Game Theoretic Attack Defense Tree Model for VANETs, 729–734.

18. L. Wei, A. Sarwat, and W. Saad. (2016). Risk Assessment of Coordinated Cyber-Physical At-tacks Against Power Grids : A Stochastic Game Approach, 1–7.

19. P. Y. Matthew-Omole, A. J. Gabriel, A. F. Thompson, B. K. Alese, (2021). Monte Carlo Simu-lation Approach to Network Access Control. Journal of Internet Technology and Secured Transactions (JITST) 9(1):726-729. DOI:10.20533/jitst.2046.3723.2021.0088.

20. S. Musman, and A. Turner, (2017). A game theoretic approach to cyber security risk manage-ment. Journal of Defense Modeling and Simulation: Applications, Methodology, Technolo-gy, (Special). http://doi.org/10.1177/1548512917699724.

21. T. Tidwell, R. Larson, K. Fitch, and J. Hale, (2001). Modeling Internet Attacks. Proceedings of the 2001 IEEE Workshop on Information Assurance and Security United States Military Academy, West Point, NY, 5-6 June, 2001, 1, 5–6.

22. H. Mohamed, (2005). Theoretical Aspects of Computer Network Risk Management. The Communication Network and Security (CN&S) research Laboratory at the Communication School of Engineering University, Carthage, Tunisia.

23. https://www.us-cert.gov/. (2017). US -CERT. United States Computer Emergency Readiness Team, Department of Homeland Security.

24. https://nvd.nist.gov/. (2017). Computer Security Resource Centre, National Vulnerability Data-base. National Institute of Standards and Technology U.S. Department of Commerce.

Data Availability

The datasets used and/or analyzed during the current study will be available from the authors upon reasonable request.

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. Authors who publish this series agree to the following terms:

1. Authors retain copyright and grant the series right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this series.

2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the series's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this series.

3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See Open Access Instruction).

Volume Title
Proceedings of the 4th International Conference on Computing and Data Science (CONF-CDS 2022)
ISBN (Print)
978-1-915371-19-5
ISBN (Online)
978-1-915371-20-1
Published Date
22 March 2023
Series
Applied and Computational Engineering
ISSN (Print)
2755-2721
ISSN (Online)
2755-273X
DOI
10.54254/2755-2721/2/20220611
Copyright
22 March 2023
Open Access
This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited

Copyright © 2023 EWA Publishing. Unless Otherwise Stated