摘要
在现实的网络空间安全管理中,网络安全防御策略选取是常见问题,但现有的防御策略选取方法难以兼顾网络管理员认知局限性和网络拓扑结构。为此,本文提出了一种基于前景理论的网络安全最优防御策略选取方法。首先,描述了存在多个子网络的网络安全防御策略优化问题,进而计算防御者的前景综合效用值;其次,建立基于前景理论的网络安全防御策略选取优化模型。该模型考虑防御成本、网络拓扑结构和防御者有限理性,进而计算不同防御成本下的最优防御策略,并揭示防御者理性程度参数对防御策略优化的影响规律。该模型进一步发展和完善安全博弈方法,可为解决有限理性视角下网络安全防御策略优化问题提供一种新方法,拓展了安全博弈应用领域。最后以物流系统的网络安全问题为例,验证了本文方法的有效性。
With regards to cases of real network security management,the choice of security defence strategy is a common problem.However,the existing methods to choose security defence strategy is limited by the network administrators’cognition and network topology.Therefore,an optimal way is proposed to select internet security defence strategy based on prospect theory.At first,several problems in optimizing defence strategy selection for sub-networks and calculates comprehensive prospect utility values for both the offensive and the defensive are described.Then,an optimal model is constructed for the choice of internet security strategy based on the prospect theory.This model considers the cost of defence and topology of network.Later,the optimal defence strategies are computed with different defence costs,network topology and the limited rationality of the defenders.Meanwhile,the influence law of defender rationality degree parameters on defense strategy optimization are researched.The optimal defence strategies model expands the application of offensive and defensive games,not only offers a new way to optimize the option of network security defence strategy against limited rationality,but also expands the application field of security game.Finally,a network security problem in logistic system is demonstrated as an example to prove the validity of the proposed method.
作者
余高锋
李登峰
Yu Gaofeng;Li Dengfeng(School of Business Administration,Fujian Business University,Fuzhou 350016,China;School of Management and Economics,University of Electronic Science and Technology of China,Chengdu 611731,China)
出处
《中国管理科学》
北大核心
2026年第2期156-163,共8页
Chinese Journal of Management Science
基金
国家自然科学基金项目(72001126)
教育部人文社科青年项目(25YJC630175)
福建省社会科学规划重点项目(FJ2025MGCA006)。
关键词
前景理论
安全博弈
防御策略
网络安全
prospect theory
security game
defense strategy
network security
