Manipulating Adversary’s Belief: A Dynamic Game Approach to Deception by Design for Proactive Network Security

Karel Horák, Quanyan Zhu, Branislav Bošanský

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Due to the sophisticated nature of current computer systems, traditional defense measures, such as firewalls, malware scanners, and intrusion detection/prevention systems, have been found inadequate. These technological systems suffer from the fact that a sophisticated attacker can study them, identify their weaknesses and thus get an advantage over the defender. To prevent this from happening a proactive cyber defense is a new defense mechanism in which we strategically engage the attacker by using cyber deception techniques, and we influence his actions by creating and reinforcing his view of the computer system. We apply the cyber deception techniques in the field of network security and study the impact of the deception on attacker’s beliefs using the quantitative framework of the game theory. We account for the sequential nature of an attack and investigate how attacker’s belief evolves and influences his actions. We show how the defender should manipulate this belief to prevent the attacker from achieving his goals and thus minimize the damage inflicted to the network. To design a successful defense based on cyber deception, it is crucial to employ strategic thinking and account explicitly for attacker’s belief that he is being exposed to deceptive attempts. By doing so, we can make the deception more believable from the perspective of the attacker.

Original languageEnglish (US)
Title of host publicationDecision and Game Theory for Security - 8th International Conference, GameSec 2017, Proceedings
EditorsChristopher Kiekintveld, Stefan Schauer, Bo An, Stefan Rass, Fei Fang
PublisherSpringer Verlag
Pages273-294
Number of pages22
ISBN (Print)9783319687100
DOIs
StatePublished - 2017
Event8th International Conference on Decision and Game Theory for Security, GameSec 2017 - Vienna, Austria
Duration: Oct 23 2017Oct 25 2017

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume10575 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other8th International Conference on Decision and Game Theory for Security, GameSec 2017
Country/TerritoryAustria
CityVienna
Period10/23/1710/25/17

ASJC Scopus subject areas

  • Theoretical Computer Science
  • General Computer Science

Fingerprint

Dive into the research topics of 'Manipulating Adversary’s Belief: A Dynamic Game Approach to Deception by Design for Proactive Network Security'. Together they form a unique fingerprint.

Cite this