Gamu Blue: A Practical Tool for Game Theory Security Equilibria
Ameer Taweel, Burcu Yıldız, Alptekin Küpçü
TL;DR
The paper presents Gamu Blue, a practical Python-based tool built on Gambit to compute multiple multi-party security equilibria definitions in cybersecurity games, including $k$-resiliency, $l$-repellence, $t$-immunity, $(l,t)$-resistance, and $m$-stability. It formalizes the underlying $n$-player normal-form framework, contrasts old and new definitions, and provides concrete algorithms with worst-case time bounds, highlighting PPAD-hardness where relevant. Through experiments on IOC and FD games, it demonstrates how the tool exposes the security properties of different mechanisms and characterizes their computational scalability, offering open-source code as a baseline for future work. Overall, Gamu Blue enables researchers to analyze and compare security equilibria in a consistent, reproducible manner, accelerating practical assessments and algorithmic improvements in game-theoretic cybersecurity.
Abstract
The application of game theory in cybersecurity enables strategic analysis, adversarial modeling, and optimal decision-making to address security threats' complex and dynamic nature. Previous studies by Abraham et al. and Biçer et al. presented various definitions of equilibria to examine the security aspects of games involving multiple parties. Nonetheless, these definitions lack practical and easy-to-use implementations. Our primary contribution is addressing this gap by developing Gamu Blue, an easy-to-use tool with implementations for computing the equilibria definitions including k-resiliency, l-repellence, t-immunity, (l, t)-resistance, and m-stability.