@inproceedings{b29286e7c4d54642882524cd2ef1ebe7,
title = "Scenario-Agnostic Zero-Trust Defense with Explainable Threshold Policy: A Meta-Learning Approach",
abstract = "The increasing connectivity and intricate remote access environment have made traditional perimeter-based network defense vulnerable. Zero trust becomes a promising approach to provide defense policies based on agent-centric trust evaluation. However, the limited observations of the agent's trace bring information asymmetry in the decision-making. To facilitate the human understanding of the policy and the technology adoption, one needs to create a zero-trust defense that is explainable to humans and adaptable to different attack scenarios. To this end, we propose a scenario-agnostic zero-trust defense based on Partially Observable Markov Decision Processes (POMDP) and first-order Meta-Learning using only a handful of sample scenarios. The framework leads to an explainable and generalizable trust-threshold defense policy. To address the distribution shift between empirical security datasets and reality, we extend the model to a robust zero-trust defense minimizing the worst-case loss. We use case studies and real-world attacks to corroborate the results.",
keywords = "Zero-trust security, meta learning, scenario-agnostic, threshold policy",
author = "Yunfei Ge and Tao Li and Quanyan Zhu",
note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 2023 IEEE INFOCOM Conference on Computer Communications Workshops, INFOCOM WKSHPS 2023 ; Conference date: 20-05-2023",
year = "2023",
doi = "10.1109/INFOCOMWKSHPS57453.2023.10225816",
language = "English (US)",
series = "IEEE INFOCOM 2023 - Conference on Computer Communications Workshops, INFOCOM WKSHPS 2023",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
booktitle = "IEEE INFOCOM 2023 - Conference on Computer Communications Workshops, INFOCOM WKSHPS 2023",
}