Game-theoretic modeling of the behavior of Domain Name System attacker

Abdul Aziz Al Abri, Ahmed Al Maashri*, Mohamed Ould-Khaoua, Hadj Bourdoucen

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

1 Citation (Scopus)

Abstract

The last few years have witnessed a rapid increase in the number of cyber-attacks on governments and organizations. To combat these attacks, a number of works have developed mathematical models that attempt to capture the behavior of attackers. However, these works focus on the process of the attack rather than the behavior of the attacker, which hinders the effectiveness of these models. On the other hand, many applications in cyber security have utilized game theory to model both the defender and attacker. This paper combines the Markov Chain models with game theory in order to assess the security state of Domain Name System (DNS) servers. This assessment was performed using realistic values of reward and cost in the game model. The simulation results indicate that the proposed modifications to the model have improved the accuracy of modeling the behavior of attackers on DNS servers.

Original languageEnglish
Article number106801
JournalComputers and Electrical Engineering
Volume87
DOIs
Publication statusPublished - Oct 2020

Keywords

  • Cyber security
  • DNS cache poisoning
  • Game theory
  • Intrusion detection systems
  • Markov chain

ASJC Scopus subject areas

  • Control and Systems Engineering
  • Computer Science(all)
  • Electrical and Electronic Engineering

Cite this