Authors: Yixuan Zhang; Jingsha He; Bin Zhao; Ruohong Liu
Addresses: School of Software Engineering, Beijing University of Technology, Beijing 100124, China ' School of Software Engineering, Beijing University of Technology, Beijing 100124, China ' School of Software Engineering, Beijing University of Technology, Beijing 100124, China ' Department of Information Technology, Beijing Development Area Co., Ltd., Beijing 100176, China
Abstract: Access control is a core security technology that has been widely used in computer systems and networks. In access control, an object wants to make sure that a subject makes honest access and the subject hopes that access requests will receive permissions from the object. In this paper, we model access control as a repeated game between subject and object and apply game theory to authorise access requests. The purpose is to make honest access to seek more payoffs for subject from the access. The ultimate goal of applying the game theory to access control is to discourage dishonest access from subject so that we can improve the effectiveness of access control, which is achieved through deriving the conditions that would lead to Nash equilibrium. We also perform some experiments to demonstrate the effectiveness of our game theory-based access control and show its advantages over traditional access control models as well.
Keywords: dynamic access control; repeated games; Nash equilibrium; trigger strategy; game theory; security systems; authorisation.
International Journal of High Performance Computing and Networking, 2016 Vol.9 No.5/6, pp.451 - 461
Available online: 22 Nov 2016 *Full-text access for editors Access for subscribers Purchase this article Comment on this article