Network Security under Heterogeneous Cyber-Risk Profiles and Contagion
Elisa Botteghi, Martino S. Centonze, Davide Pastorello, Daniele Tantari
TL;DR
The paper tackles optimal cybersecurity allocation on networks under contagious threats with asymmetric attacker/defender valuations. It integrates a static contagion mechanism on graphs with a Stackelberg security game, yielding tractable, topology-informed strategies and a scalable path-based risk measure. A key contribution is an explicit SSE approximation in the low-budget regime, $\mathbf{q}^* \approx \frac{1}{\alpha}\mathbf{s} + \frac{1}{\alpha^2}\mathbf{M}\mathbf{s}$, where $\mathbf{M}$ and $\mathbf{s}$ depend on one- and two-point protection metrics $\mathbf{p}^1$, $\mathbf{p}^2$ and on risk profiles $\bm{z},\bm{\eta}$; this links network structure directly to defense investments. Numerical analyses across tree and random topologies reveal efficient frontiers and illustrate cyber-deception effects, with strategies robust to alternative contagion dynamics (e.g., SI, SIS, threshold). The work offers actionable guidance for designing resilient digital infrastructures by revealing how topology, risk heterogeneity, and strategic behavior shape systemic cyber risk.
Abstract
Cyber risk has become a critical financial threat in today's interconnected digital economy. This paper introduces a cyber-risk management framework for networked digital systems that combines the strategic behavior of players with contagion dynamics within a security game. We address the problem of optimally allocating cybersecurity resources across a network, focusing on the heterogeneous valuations of nodes by attackers and defenders, some areas may be of high interest to the attacker, while others are prioritized by the defender. We explore how this asymmetry drives attack and defense strategies and shapes the system's overall resilience. We extend a method to determine optimal resource allocation based on simple network metrics weighted by the defender's and attacker's risk profiles. We further propose risk measures based on contagion paths and analyze how propagation dynamics influence optimal defense strategies. Numerical experiments explore risk versus cost efficient frontiers varying network topologies and risk profiles, revealing patterns of resource allocation and cyber deception effects. These findings provide actionable insights for designing resilient digital infrastructures and mitigating systemic cyber risk.
