IEEE Access (Jan 2019)
A Risk Management Approach to Double-Virus Tradeoff Problem
Abstract
One of the major threats to cybersecurity is the emergence of new computer viruses. By emergence of new viruses, the cybersecurity companies assign a team of security experts and programmers to study the behavior of the virus and develop the corresponding antivirus program to secure networks. Sometimes, more than one new virus is identified that requires the cybersecurity team to make a tradeoff on the allocation of programmers, and thus leads to two-antivirus-program development problem under double-virus attack. In this paper, we propose DOWNHILL algorithm to address the outlined challenge. We model the time evolution of the expected state of the network as a differential dynamical system to measure the total loss caused by the viruses. Then, we propose a DOWNHILL algorithm, three heuristic algorithms and a random algorithm to solve the problem, respectively. We study the computational complexities of the proposed algorithms as well. Through numerous comparative experiments, we confirm the DOWNHILL algorithm is the most effective method to this problem. Finally, the influence of different factors on the DOWNHILL strategy and its potential total loss are also researched.
Keywords