Optimal Backup Strategies Against Cyber Attacks

نویسندگان

  • Achiya Bar-On
  • Itai Dinur
  • Orr Dunkelman
  • Rani Hod
  • Nathan Keller
  • Eyal Ronen
  • Adi Shamir
چکیده

In this paper we introduce the new problem of finding the best way to protect a computer system against cyber and ransomware attacks by choosing an optimal backup scheme using k storage devices. While in standard backup schemes it is beneficial to backup as frequently as possible, in the case of sophisticated cyber attacks any attempt to connect a backup device to an already infected computer is likely to stealthily corrupt its data and thus make it unusable when the actual attack happens. Our formalization of the problem casts it as a special case of an online/offline optimization problem, in which the defender tries to minimize the maximal extra cost caused by his lack of knowledge about the time of the initial infection. Any backup scheme can be viewed as a very simple pebbling game where in each step any one of the k backup pebbles can be moved to any point to the right of all the pebbles along the time axis, and the goal of the game is to keep the pebbles as evenly spread as possible at all times. However, its optimal solution is surprisingly complicated and leads to interesting combinatorial questions which are reminiscent of questions in discrepancy theory. For small values of k, we find provably optimal backup strategies for all k < 10, and each case seems to be somewhat different: For k = 3 the best schedule uses backup times which form a simple geometric progression based on the golden ratio, but already for k = 4 we show that no geometric progression can be optimal and the efficiency of the best online scheme is worse than the efficiency of the best offline scheme by a strange factor of 2/ (1 + cos (2π/7)). For k = 8 the optimal order of device updates becomes highly complicated: 1, 2, 4, 7, 5, 3, 1, 7, 5, 3, 7, 1, 4, 2, 4, 5 . . ., while for k = 9 it is much simpler. We then consider the case of arbitrarily large values of k, and prove a matching upper and lower bound of ln 4 on the asymptotic efficiency of optimal backup schemes when k goes to infinity.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Resilient Configuration of Distribution System versus False Data Injection Attacks Against State Estimation

State estimation is used in power systems to estimate grid variables based on meter measurements. Unfortunately, power grids are vulnerable to cyber-attacks. Reducing cyber-attacks against state estimation is necessary to ensure power system safe and reliable operation. False data injection (FDI) is a type of cyber-attack that tampers with measurements. This paper proposes network reconfigurati...

متن کامل

Avoiding Cyber-attacks to DMZ and Capturing Forensics from Intruders Using Honeypots

Nowadays, honeypots are widely used to divert attackers from the original target and keep them busy within a decoy environment. DeMilitarized Zone (DMZ) is an important zone for network administrators, because many of the services to the public network is provided at this zone. Many of the security tools such as firewalls, intrusion detection systems and several other secu...

متن کامل

A Review on Cyberspace Security: Lessons for Islamic Republic of Iran

Today governments face a threat by cyber attacks capable of disrupting communicative, economic and vital services that cause severe damages and losses. It has been years that Islamic republic of Iran benefits from cyberspace in different military and civilian sectors. Sensitive national centers such as nuclear facilities and Ministry of Oil have been targeted by individuals, groups and governme...

متن کامل

Avoiding Cyber-attacks to DMZ and Capturing Forensics from Intruders Using Honeypots

Nowadays, honeypots are widely used to divert attackers from the original target and keep them busy within a decoy environment. DeMilitarized Zone (DMZ) is an important zone for network administrators, because many of the services to the public network is provided at this zone. Many of the security tools such as firewalls, intrusion detection systems and several other secu...

متن کامل

An Effective Attack-Resilient Kalman Filter-Based Approach for Dynamic State Estimation of Synchronous Machine

Kalman filtering has been widely considered for dynamic state estimation in smart grids. Despite its unique merits, the Kalman Filter (KF)-based dynamic state estimation can be undesirably influenced by cyber adversarial attacks that can potentially be launched against the communication links in the Cyber-Physical System (CPS). To enhance the security of KF-based state estimation, in this paper...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:
  • CoRR

دوره abs/1704.02659  شماره 

صفحات  -

تاریخ انتشار 2017