Cyber risk management with risk aware cyber-insurance in blockchain networks

Shaohan Feng; Zehui Xiong; Dusit Niyato; Ping Wang; Shaun Shuxun Wang; Yang Zhang

doi:10.1109/GLOCOM.2018.8648141

Cyber risk management with risk aware cyber-insurance in blockchain networks

Shaohan Feng
, Zehui Xiong
, Dusit Niyato
, Ping Wang
, Shaun Shuxun Wang
, Yang Zhang

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

9 Citations (Scopus)

Abstract

Benefit from the capabilities of providing decentralized tamper-proof ledgers and platforms for data-driven autonomous organization, open-access blockchains based on proof-of-work protocols have gained tremendous popularity. Yet, the proof-of-work based consensus protocols under threats, e.g., double-spending. In this paper, by adopting the cyber-insurance as an economic tool to neutralize cyber risks, we propose a novel approach of cyber risk management for blockchain-based service. The blockchain service market under our consideration is composed of four entities, i.e., the infrastructure provider, blockchain provider, cyber-insurer, and users. The blockchain provider purchases the computing resources, e.g., a cloud, from the infrastructure provider to maintain the blockchain consensus and then offers blockchain services to the users. The blockchain provider optimize its profit by strategizing its investment in the infrastructure in order to improve the security of the blockchain and the service price charged to the users. In the meantime, to prevent the potential damage incurred by the attacks and then fully secure the cyber-space, the blockchain provider purchases a cyber-insurance from the cyber-insurer. In return, the cyber- insurer adjusts the insurance premium according to the perceived risk level of the blockchain service and will pay the claim to the blockchain provider once attacks happen. Based on the rationality of the market entities, we model the interaction among the blockchain provider, users, and cyber-insurer as a two- stage Stackelberg game. Specifically, the blockchain provider and cyber-insurer lead to set their pricing-investment strategies in the upper level subgame, and then the users follow to determine their demand of the blockchain service in the lower level subgame. Specifically, we consider the scenario of double-spending attacks and provide a series of analytical results about the Stackelberg equilibrium in the market game.

Original language	English
Title of host publication	Proceedings - IEEE Global Communications Conference, GLOBECOM
Number of pages	7
DOIs	https://doi.org/10.1109/GLOCOM.2018.8648141
Publication status	Published - 21 Feb 2019
Externally published	Yes
Event	2018 IEEE Global Communications Conference, GLOBECOM 2018 - Abu Dhabi, United Arab Emirates Duration: 09 Dec 2018 → 13 Dec 2018

Publication series

Name	Proceedings - IEEE Global Communications Conference, GLOBECOM
Publisher	IEEE
ISSN (Print)	1930-529X
ISSN (Electronic)	2576-6813

Conference

Conference	2018 IEEE Global Communications Conference, GLOBECOM 2018
Country/Territory	United Arab Emirates
City	Abu Dhabi
Period	09/12/2018 → 13/12/2018

Bibliographical note

Publisher Copyright:
© 2018 IEEE.

Keywords

Blockchain service
cyber-insurance
double-spending attack
game theory

ASJC Scopus subject areas

Artificial Intelligence
Computer Networks and Communications
Hardware and Architecture
Signal Processing

Access to Document

10.1109/GLOCOM.2018.8648141Licence: Unspecified

Cite this

@inproceedings{2162df5eebf34d1c931ba11662f7a99a,

title = "Cyber risk management with risk aware cyber-insurance in blockchain networks",

abstract = "Benefit from the capabilities of providing decentralized tamper-proof ledgers and platforms for data-driven autonomous organization, open-access blockchains based on proof-of-work protocols have gained tremendous popularity. Yet, the proof-of-work based consensus protocols under threats, e.g., double-spending. In this paper, by adopting the cyber-insurance as an economic tool to neutralize cyber risks, we propose a novel approach of cyber risk management for blockchain-based service. The blockchain service market under our consideration is composed of four entities, i.e., the infrastructure provider, blockchain provider, cyber-insurer, and users. The blockchain provider purchases the computing resources, e.g., a cloud, from the infrastructure provider to maintain the blockchain consensus and then offers blockchain services to the users. The blockchain provider optimize its profit by strategizing its investment in the infrastructure in order to improve the security of the blockchain and the service price charged to the users. In the meantime, to prevent the potential damage incurred by the attacks and then fully secure the cyber-space, the blockchain provider purchases a cyber-insurance from the cyber-insurer. In return, the cyber- insurer adjusts the insurance premium according to the perceived risk level of the blockchain service and will pay the claim to the blockchain provider once attacks happen. Based on the rationality of the market entities, we model the interaction among the blockchain provider, users, and cyber-insurer as a two- stage Stackelberg game. Specifically, the blockchain provider and cyber-insurer lead to set their pricing-investment strategies in the upper level subgame, and then the users follow to determine their demand of the blockchain service in the lower level subgame. Specifically, we consider the scenario of double-spending attacks and provide a series of analytical results about the Stackelberg equilibrium in the market game.",

keywords = "Blockchain service, cyber-insurance, double-spending attack, game theory",

author = "Shaohan Feng and Zehui Xiong and Dusit Niyato and Ping Wang and Wang, \{Shaun Shuxun\} and Yang Zhang",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 2018 IEEE Global Communications Conference, GLOBECOM 2018 ; Conference date: 09-12-2018 Through 13-12-2018",

year = "2019",

month = feb,

day = "21",

doi = "10.1109/GLOCOM.2018.8648141",

language = "English",

series = "Proceedings - IEEE Global Communications Conference, GLOBECOM",

publisher = "IEEE",

booktitle = "Proceedings - IEEE Global Communications Conference, GLOBECOM",

}

Feng, S, Xiong, Z, Niyato, D, Wang, P, Wang, SS & Zhang, Y 2019, Cyber risk management with risk aware cyber-insurance in blockchain networks. in Proceedings - IEEE Global Communications Conference, GLOBECOM. Proceedings - IEEE Global Communications Conference, GLOBECOM, 2018 IEEE Global Communications Conference, GLOBECOM 2018, Abu Dhabi, United Arab Emirates, 09/12/2018. https://doi.org/10.1109/GLOCOM.2018.8648141

TY - GEN

T1 - Cyber risk management with risk aware cyber-insurance in blockchain networks

AU - Feng, Shaohan

AU - Xiong, Zehui

AU - Niyato, Dusit

AU - Wang, Ping

AU - Wang, Shaun Shuxun

AU - Zhang, Yang

PY - 2019/2/21

Y1 - 2019/2/21

N2 - Benefit from the capabilities of providing decentralized tamper-proof ledgers and platforms for data-driven autonomous organization, open-access blockchains based on proof-of-work protocols have gained tremendous popularity. Yet, the proof-of-work based consensus protocols under threats, e.g., double-spending. In this paper, by adopting the cyber-insurance as an economic tool to neutralize cyber risks, we propose a novel approach of cyber risk management for blockchain-based service. The blockchain service market under our consideration is composed of four entities, i.e., the infrastructure provider, blockchain provider, cyber-insurer, and users. The blockchain provider purchases the computing resources, e.g., a cloud, from the infrastructure provider to maintain the blockchain consensus and then offers blockchain services to the users. The blockchain provider optimize its profit by strategizing its investment in the infrastructure in order to improve the security of the blockchain and the service price charged to the users. In the meantime, to prevent the potential damage incurred by the attacks and then fully secure the cyber-space, the blockchain provider purchases a cyber-insurance from the cyber-insurer. In return, the cyber- insurer adjusts the insurance premium according to the perceived risk level of the blockchain service and will pay the claim to the blockchain provider once attacks happen. Based on the rationality of the market entities, we model the interaction among the blockchain provider, users, and cyber-insurer as a two- stage Stackelberg game. Specifically, the blockchain provider and cyber-insurer lead to set their pricing-investment strategies in the upper level subgame, and then the users follow to determine their demand of the blockchain service in the lower level subgame. Specifically, we consider the scenario of double-spending attacks and provide a series of analytical results about the Stackelberg equilibrium in the market game.

AB - Benefit from the capabilities of providing decentralized tamper-proof ledgers and platforms for data-driven autonomous organization, open-access blockchains based on proof-of-work protocols have gained tremendous popularity. Yet, the proof-of-work based consensus protocols under threats, e.g., double-spending. In this paper, by adopting the cyber-insurance as an economic tool to neutralize cyber risks, we propose a novel approach of cyber risk management for blockchain-based service. The blockchain service market under our consideration is composed of four entities, i.e., the infrastructure provider, blockchain provider, cyber-insurer, and users. The blockchain provider purchases the computing resources, e.g., a cloud, from the infrastructure provider to maintain the blockchain consensus and then offers blockchain services to the users. The blockchain provider optimize its profit by strategizing its investment in the infrastructure in order to improve the security of the blockchain and the service price charged to the users. In the meantime, to prevent the potential damage incurred by the attacks and then fully secure the cyber-space, the blockchain provider purchases a cyber-insurance from the cyber-insurer. In return, the cyber- insurer adjusts the insurance premium according to the perceived risk level of the blockchain service and will pay the claim to the blockchain provider once attacks happen. Based on the rationality of the market entities, we model the interaction among the blockchain provider, users, and cyber-insurer as a two- stage Stackelberg game. Specifically, the blockchain provider and cyber-insurer lead to set their pricing-investment strategies in the upper level subgame, and then the users follow to determine their demand of the blockchain service in the lower level subgame. Specifically, we consider the scenario of double-spending attacks and provide a series of analytical results about the Stackelberg equilibrium in the market game.

KW - Blockchain service

KW - cyber-insurance

KW - double-spending attack

KW - game theory

U2 - 10.1109/GLOCOM.2018.8648141

DO - 10.1109/GLOCOM.2018.8648141

M3 - Conference contribution

AN - SCOPUS:85063459976

T3 - Proceedings - IEEE Global Communications Conference, GLOBECOM

BT - Proceedings - IEEE Global Communications Conference, GLOBECOM

T2 - 2018 IEEE Global Communications Conference, GLOBECOM 2018

Y2 - 9 December 2018 through 13 December 2018

ER -

Cyber risk management with risk aware cyber-insurance in blockchain networks

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Fingerprint

Cite this