Automated Game-Theoretic Verification of Security Systems

Chunyan Mu

doi:10.1007/978-3-030-30281-8_14

Automated Game-Theoretic Verification of Security Systems

Chunyan Mu

Centre for Digital Innovation

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

274 Downloads (Pure)

Abstract

Security-sensitive computerised communication systems are of increasing importance, however checking that they function correctly can be non-trivial. We propose automated verification techniques for the formal analysis of quantitative properties of such systems. Since communication networks typically require the collaboration of their participants to work effectively, we adopt a game-theoretic approach. Utility functions for each player, such as the degree of security offered
and the communication costs incurred, are formally specified using quantitative temporal logics. Then, building upon probabilistic verification techniques for parametric Markov chains, we develop methods to identify Nash equilibria representing stable strategies for the participants. We implement our methods as an extension of the PRISM model checker, and illustrate their applicability by studying anonymity-cost trade-offs in the Crowds anonymity protocol.

Original language	English
Title of host publication	Quantitative Evaluation of Systems. QEST 2019
Editors	D Parker, V Wolf
Publisher	Springer
Pages	239-256
ISBN (Electronic)	9783030302818
ISBN (Print)	9783030302801
DOIs	https://doi.org/10.1007/978-3-030-30281-8_14
Publication status	Published - 4 Sept 2019
Event	16th International Conference on Quantitative Evaluation of SysTems - Glasgow, United Kingdom Duration: 10 Sept 2019 → 12 Sept 2019

Publication series

Name	Lecture Notes in Computer Science
Volume	11785
ISSN (Print)	0302-9743

Conference

Conference	16th International Conference on Quantitative Evaluation of SysTems
Abbreviated title	QEST 2019
Country/Territory	United Kingdom
City	Glasgow
Period	10/09/19 → 12/09/19

Access to Document

10.1007/978-3-030-30281-8_14

Full textAccepted author manuscript, 274 KBLicence: CC BY-NC-ND

Cite this

@inproceedings{0c49e7ca5bcb4f09ab7048e6c71f5422,

title = "Automated Game-Theoretic Verification of Security Systems",

abstract = "Security-sensitive computerised communication systems are of increasing importance, however checking that they function correctly can be non-trivial. We propose automated verification techniques for the formal analysis of quantitative properties of such systems. Since communication networks typically require the collaboration of their participants to work effectively, we adopt a game-theoretic approach. Utility functions for each player, such as the degree of security offeredand the communication costs incurred, are formally specified using quantitative temporal logics. Then, building upon probabilistic verification techniques for parametric Markov chains, we develop methods to identify Nash equilibria representing stable strategies for the participants. We implement our methods as an extension of the PRISM model checker, and illustrate their applicability by studying anonymity-cost trade-offs in the Crowds anonymity protocol.",

author = "Chunyan Mu",

year = "2019",

month = sep,

day = "4",

doi = "10.1007/978-3-030-30281-8_14",

language = "English",

isbn = "9783030302801",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "239--256",

editor = "D Parker and V Wolf",

booktitle = "Quantitative Evaluation of Systems. QEST 2019",

note = "16th International Conference on Quantitative Evaluation of SysTems , QEST 2019 ; Conference date: 10-09-2019 Through 12-09-2019",

}

TY - GEN

T1 - Automated Game-Theoretic Verification of Security Systems

AU - Mu, Chunyan

PY - 2019/9/4

Y1 - 2019/9/4

N2 - Security-sensitive computerised communication systems are of increasing importance, however checking that they function correctly can be non-trivial. We propose automated verification techniques for the formal analysis of quantitative properties of such systems. Since communication networks typically require the collaboration of their participants to work effectively, we adopt a game-theoretic approach. Utility functions for each player, such as the degree of security offeredand the communication costs incurred, are formally specified using quantitative temporal logics. Then, building upon probabilistic verification techniques for parametric Markov chains, we develop methods to identify Nash equilibria representing stable strategies for the participants. We implement our methods as an extension of the PRISM model checker, and illustrate their applicability by studying anonymity-cost trade-offs in the Crowds anonymity protocol.

AB - Security-sensitive computerised communication systems are of increasing importance, however checking that they function correctly can be non-trivial. We propose automated verification techniques for the formal analysis of quantitative properties of such systems. Since communication networks typically require the collaboration of their participants to work effectively, we adopt a game-theoretic approach. Utility functions for each player, such as the degree of security offeredand the communication costs incurred, are formally specified using quantitative temporal logics. Then, building upon probabilistic verification techniques for parametric Markov chains, we develop methods to identify Nash equilibria representing stable strategies for the participants. We implement our methods as an extension of the PRISM model checker, and illustrate their applicability by studying anonymity-cost trade-offs in the Crowds anonymity protocol.

U2 - 10.1007/978-3-030-30281-8_14

DO - 10.1007/978-3-030-30281-8_14

M3 - Conference contribution

SN - 9783030302801

T3 - Lecture Notes in Computer Science

SP - 239

EP - 256

BT - Quantitative Evaluation of Systems. QEST 2019

A2 - Parker, D

A2 - Wolf, V

PB - Springer

T2 - 16th International Conference on Quantitative Evaluation of SysTems

Y2 - 10 September 2019 through 12 September 2019

ER -

Automated Game-Theoretic Verification of Security Systems

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this