managing the weakest link a game theoretic approach for
play

Managing the Weakest Link: A Game-Theoretic Approach for the - PowerPoint PPT Presentation

Dec 06, 2023 •16 likes •456 views

Managing the Weakest Link: A Game-Theoretic Approach for the Mitigation of Insider Threats Aron Laszka 1 , 2 Benjamin Johnson 3 ottle 4 Pascal Sch Jens Grossklags 1 ohme 4 Rainer B 1 Pennsylvania State University 2 Budapest University of

  1. Managing the Weakest Link: A Game-Theoretic Approach for the Mitigation of Insider Threats Aron Laszka 1 , 2 Benjamin Johnson 3 ottle 4 Pascal Sch¨ Jens Grossklags 1 ohme 4 Rainer B¨ 1 Pennsylvania State University 2 Budapest University of Technology and Economics 3 University of California, Berkeley 4 University of M¨ unster Laszka et al. (PennState) Managing the Weakest Link 1 / 26

  2. Motivation - Cyber-espionage Will the new device be a phone or not? Laszka et al. (PennState) Managing the Weakest Link 2 / 26

  3. Motivation - Cyber-espionage Will interest rates change or not? Laszka et al. (PennState) Managing the Weakest Link 3 / 26

  4. Motivation - Cyber-espionage Respond to a cyber-attack with conventional warfare? Laszka et al. (PennState) Managing the Weakest Link 4 / 26

  5. Motivation - Cyber-espionage What is published ◮ FBI “estimates that every year billions of U.S. dollars are lost to foreign and domestic competitors who deliberately target economic intelligence in flourishing U.S. industries and technologies” [4] ◮ a 2012 report identifies the loss for the German industry caused by industrial espionage to be around 4.2 billion e [2] ◮ US and one particular foreign nation in the last four years: “nearly 100 individual or corporate defendants have been charged by the Justice Department with stealing trade secrets or classified information” [5] Laszka et al. (PennState) Managing the Weakest Link 5 / 26

  6. Weakest Link: Insider Threats FBI: “A domestic or foreign business competitor ... may wish to place a spy into a company in order to gain access to non-public information. Alternatively, they may try to recruit an existing employee to do the same thing.” [3] 2012 report on Germany: over 70% of losses were caused by members of their own organization [2] traditionally: access control Laszka et al. (PennState) Managing the Weakest Link 6 / 26

  7. Weakest Link: Insider Threats FBI: “A domestic or foreign business competitor ... may wish to place a spy into a company in order to gain access to non-public information. Alternatively, they may try to recruit an existing employee to do the same thing.” [3] 2012 report on Germany: over 70% of losses were caused by members of their own organization [2] traditionally: access control, but secrets have to be shared with some employees ◮ CERT investigation of 23 attacks: “in 78% of the incidents, the insiders were authorized users with active computer accounts” [7] How can we mitigate these risks? Laszka et al. (PennState) Managing the Weakest Link 6 / 26

  8. Managing Insider Threats Managing insider threats Laszka et al. (PennState) Managing the Weakest Link 7 / 26

  9. Managing Insider Threats Team composition Assessing the trustworthiness Estimating the value of ... of employees (e.g., [6]) intellectual property (e.g., [1]) Laszka et al. (PennState) Managing the Weakest Link 7 / 26

  10. Managing Insider Threats we focus on this Team composition Assessing the trustworthiness Estimating the value of ... of employees (e.g., [6]) intellectual property (e.g., [1]) Laszka et al. (PennState) Managing the Weakest Link 7 / 26

  11. Model - Introduction secret of value S Laszka et al. (PennState) Managing the Weakest Link 8 / 26

  12. Model - Introduction secret of value S N employees Laszka et al. (PennState) Managing the Weakest Link 8 / 26

  13. Model - Introduction secret of value S Alice, the manager, selects k employees N employees Laszka et al. (PennState) Managing the Weakest Link 8 / 26

  14. Model - Introduction secret of value S Alice, the manager, selects k employees N employees Eve, the adversary Laszka et al. (PennState) Managing the Weakest Link 8 / 26

  15. Model - Introduction secret of value S Alice, the manager, selects k employees N employees targets an employee and tries to bribe her with a value of b Eve, the adversary Laszka et al. (PennState) Managing the Weakest Link 8 / 26

  16. Model - Introduction FAIL secret of value S Alice, the manager, selects k employees N employees bribe value b has to be higher than the trustworthiness level T i of the employee Eve, the adversary Laszka et al. (PennState) Managing the Weakest Link 8 / 26

  17. Trustworthiness Level Distributions the probability that the bribe is successful (given that the targeted employee actually knows the secret) is increasing in the bribe value we assume that both players can learn the trustworthiness level distributions Pr[ T i < b ] 1 0 b Laszka et al. (PennState) Managing the Weakest Link 9 / 26

  18. Model - Details Game-theoretic model two-player, one-shot game Alice, the manager, selects a set I of k employees → her pure strategies are the k -subsets of N Eve, the adversary, targets an employee i and chooses a bribe value b → her pure strategies are ( i , b ) pairs when Alice selects set I and Eve chooses ( i , b ) ◮ if i ∈ I and b ≥ T i : Eve learns the secret and gains S − b , while Alice loses S ◮ if i �∈ I or b < T i : Eve does not learn the secret and loses b , while Alice does not lose anything information available to the players ◮ both players know the employees’ trustworthiness distributions ◮ but they do not know the other players’ strategic choice mixed strategies ◮ Alice: probability a i of sharing the secret with employee i Laszka et al. (PennState) Managing the Weakest Link 10 / 26

  19. Na¨ ıve Ideas “Select the k most trustworthy employees.” Laszka et al. (PennState) Managing the Weakest Link 11 / 26

  20. Na¨ ıve Ideas “Select the k most trustworthy employees.” “Eve will always target the employees who are the most likely to know the secret.” Laszka et al. (PennState) Managing the Weakest Link 11 / 26

  21. Na¨ ıve Ideas “Select the k most trustworthy employees.” “Eve will always target the employees who are the most likely to know the secret.” “If the secret has to be shared with more employees (i.e., if k is higher), it is never safer.” Laszka et al. (PennState) Managing the Weakest Link 11 / 26

  22. Na¨ ıve Ideas “Select the k most trustworthy employees.” “Eve will always target the employees who are the most likely to know the secret.” “If the secret has to be shared with more employees (i.e., if k is higher), it is never safer.” They Laszka et al. (PennState) Managing the Weakest Link 11 / 26

  23. Na¨ ıve Ideas “Select the k most trustworthy employees.” “Eve will always target the employees who are the most likely to know the secret.” “If the secret has to be shared with more employees (i.e., if k is higher), it is never safer.” They are all Laszka et al. (PennState) Managing the Weakest Link 11 / 26

  24. Na¨ ıve Ideas “Select the k most trustworthy employees.” “Eve will always target the employees who are the most likely to know the secret.” “If the secret has to be shared with more employees (i.e., if k is higher), it is never safer.” They are all wrong! Laszka et al. (PennState) Managing the Weakest Link 11 / 26

  25. Game-Theoretic Analysis Outline Eve’s expected gain from targeting a given employee theorems characterizing Alice’s and Eve’s equilibrium strategies (For a more detailed and formal discussion, please see the paper.) Laszka et al. (PennState) Managing the Weakest Link 12 / 26

  26. Eve’s Gain from Targeting a Given Employee i bribing cost b expected benefit Pr[ T i ≤ b ] · S · a i Laszka et al. (PennState) Managing the Weakest Link 13 / 26

  27. Eve’s Gain from Targeting a Given Employee i bribing cost b expected benefit Pr[ T i ≤ b ] · S · a i not profitable profitable not profitable Laszka et al. (PennState) Managing the Weakest Link 13 / 26

  28. Eve’s Gain from Targeting a Given Employee i MaxUE( T i , a i ) > 0 bribing cost b expected benefit Pr[ T i ≤ b ] · S · a i maximum profit not profitable profitable not profitable Laszka et al. (PennState) Managing the Weakest Link 13 / 26

  29. Eve’s Gain from Targeting a Given Employee i bribing cost b expected benefit Pr[ T i ≤ b ] · S · a i Laszka et al. (PennState) Managing the Weakest Link 14 / 26

  30. Eve’s Gain from Targeting a Given Employee i MaxUE( T i , a i ) = 0 bribing cost b expected benefit Pr[ T i ≤ b ] · S · a i “profitable” not profitable Laszka et al. (PennState) Managing the Weakest Link 14 / 26

  31. Alice’s Strategy in an Equilibrium Theorem Alice is either secure, that is, Eve has no strategy against her with a positive gain, or she shares the secret with every employee with non-zero probability. Over the set of employee with whom Alice does not certainly share the secret, Eve’s expected gain is uniform. Furthermore, this expected gain is at least as much as the gain from any employee with whom Alice shares the secret certainly. sharing probability a i expected gain MaxUE( T i , a i ) 1 0 0 Laszka et al. (PennState) Managing the Weakest Link 15 / 26

  32. Eve’s Strategy in an Equilibrium Theorem Over the set of employees with whom Alice does not certainly share the secret, the probability that Eve learns the secret from a given employee is uniform. The employees with whom Alice shares the secret with certainty are at most as likely to be targeted by Eve as the other employees, with whom Alice is less likely to share the secret. Laszka et al. (PennState) Managing the Weakest Link 16 / 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A Game-Theoretic Approach to Network Security Mohammad Pirani and Henrik Sandberg Department of

A Game-Theoretic Approach to Network Security Mohammad Pirani and Henrik Sandberg Department of

A Game-Theoretic Approach to Network Security Mohammad Pirani and Henrik Sandberg Department of Automatic Control KTH Royal Institute of Technology Outline Defense mechanisms in cyber physical systems security Game-theoretic

489 views • 24 slides
Incentives in Crowdsourcing: A Game-theoretic Approach ARPITA GHOSH Cornell University NIPS

Incentives in Crowdsourcing: A Game-theoretic Approach ARPITA GHOSH Cornell University NIPS

Incentives in Crowdsourcing: A Game-theoretic Approach ARPITA GHOSH Cornell University NIPS 2013 Workshop on Crowdsourcing: Theory, Algorithms, and Applications Incentives in Crowdsourcing: A Game-theoretic Approach 1 / 26 Users on the Web:

1.48k views • 90 slides
on Power System Flexibility: A Game Theoretic Approach Donghoon Ryu, Jinsoo Kim Resource

on Power System Flexibility: A Game Theoretic Approach Donghoon Ryu, Jinsoo Kim Resource

16 th IAEE European Conference Ljubljana, 25-28 August 2019 The Influence of Energy Prosumer's Arbitrage Strategy on Power System Flexibility: A Game Theoretic Approach Donghoon Ryu, Jinsoo Kim Resource Economics Lab. Hanyang University

445 views • 18 slides
Allocation of Hydroelectric Economic Rent Using a Cooperative Game Theoretic Approach by Egill

Allocation of Hydroelectric Economic Rent Using a Cooperative Game Theoretic Approach by Egill

The 44th International Universities Power Engineering Conference, September, 1-4, 2009, Glasgow, Scotland Allocation of Hydroelectric Economic Rent Using a Cooperative Game Theoretic Approach by Egill Benedikt Hreinsson Department of

196 views • 18 slides
Game-theoretic aspects of link placement in the WorldWide Web George Kouroupas kouroupa@ aueb .gr

Game-theoretic aspects of link placement in the WorldWide Web George Kouroupas kouroupa@ aueb .gr

Related Work Description of the Problem Our Work Game-theoretic aspects of link placement in the WorldWide Web George Kouroupas kouroupa@ aueb .gr Katia Papakonstantinopoulou katia@di. uoa .gr AUEB Theory Tea November 5, 2010 George

892 views • 50 slides
A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti

A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti

Introduction Model Decentralized mechanism Conclusion A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti Sharma Ph.D. candidate, Electrical Engineering and Computer Science and Demos Teneketzis

986 views • 40 slides
A Game-Theoretic Approach for Alert Prioritization Aron Laszka, Yevgeniy Vorobeychik, Daniel

A Game-Theoretic Approach for Alert Prioritization Aron Laszka, Yevgeniy Vorobeychik, Daniel

A Game-Theoretic Approach for Alert Prioritization Aron Laszka, Yevgeniy Vorobeychik, Daniel Fabbri, Chao Yan, Bradley Malin Intrusion Detection Detection and mitigation of cyber-attacks is of crucial importance; however, attackers try to

846 views • 16 slides
TH THE WEAKEST ST LINK IN CY CYBER ER SECU SECURITY TY 1 Introduction In Ren Sloos

TH THE WEAKEST ST LINK IN CY CYBER ER SECU SECURITY TY 1 Introduction In Ren Sloos

11/4/19 TH THE WEAKEST ST LINK IN CY CYBER ER SECU SECURITY TY 1 Introduction In Ren Sloos - MCT, MCSE, CNE, CSSA Technical Account Manager at Bulletproof IT Managed Service Provider for ~70 organizations Municipalities

67 views • 6 slides
A Game-Theoretic Approach for Runtime Capacity Allocation in MapReduce Eugenio Gianniti * , Danilo

A Game-Theoretic Approach for Runtime Capacity Allocation in MapReduce Eugenio Gianniti * , Danilo

A Game-Theoretic Approach for Runtime Capacity Allocation in MapReduce Eugenio Gianniti * , Danilo Ardagna * , Michele Ciavotta * , Mauro Passacantando * * * Politecnico di Milano ** Universit di Pisa Slide 1 POLITECNICO DI MILANO Goals

421 views • 23 slides
Game Theoretic Pragmatics Michael Franke Preliminaries Game Theory Fundamentals Interpretation

Game Theoretic Pragmatics Michael Franke Preliminaries Game Theory Fundamentals Interpretation

Game Theoretic Pragmatics Michael Franke Preliminaries Game Theory Fundamentals Interpretation Games IBR Interpreting BiOT Game Theoretic Pragmatics . . . aims for mathematically precise models of language use and interpretation . . .

730 views • 61 slides
Importance of sterilization packaging every chain is only as strong as its weakest link

Importance of sterilization packaging every chain is only as strong as its weakest link

Importance of sterilization packaging every chain is only as strong as its weakest link Because of That. the international ISO committee decided to handle the packaging process as an integral part of the instrumental preparation

603 views • 31 slides
Game-Theoretic Approach to Security Problems Antonn Ku cera ech Joint work with Tom

Game-Theoretic Approach to Security Problems Antonn Ku cera ech Joint work with Tom

Game-Theoretic Approach to Security Problems Antonn Ku cera ech Joint work with Tom Brzdil, David Klaka, Tom Lamser, and Vojt Rehk (IJCAI 2018, AAMAS 2018) Brno, September 2018 Antonn Ku cera (FI MU Brno)

383 views • 16 slides
CIMAT, Guanajuato, Mexico 5th Workshop on Game-Theoretic Probability and Related Topics, 13-15

CIMAT, Guanajuato, Mexico 5th Workshop on Game-Theoretic Probability and Related Topics, 13-15

CIMAT, Guanajuato, Mexico 5th Workshop on Game-Theoretic Probability and Related Topics, 13-15 November 2014 A Prequential Approach to Financial Risk Management Mark Davis Department of Mathematics Imperial College London

690 views • 37 slides
Derandomization in Game- Theoretic Probability Kenshi Miyabe, Meiji University, Japan (joint

Derandomization in Game- Theoretic Probability Kenshi Miyabe, Meiji University, Japan (joint

Derandomization in Game- Theoretic Probability Kenshi Miyabe, Meiji University, Japan (joint work with Akimichi Takemura) Fifth Workshop on Game-Theoretic Probability and Related Topics 13 Nov 2014 This talk is mainly based on

393 views • 28 slides
WiFi Can Be the Weakest Link of Round Trip Network Latency in the Wild Changhua Pei , Youjian

WiFi Can Be the Weakest Link of Round Trip Network Latency in the Wild Changhua Pei , Youjian

WiFi Can Be the Weakest Link of Round Trip Network Latency in the Wild Changhua Pei , Youjian Zhao, Guo Chen, Ruming Tang, Yuan Meng, MinghuaMa, Ken Ling, Dan Pei Tsinghua University Carnegie Mellon University 1

700 views • 48 slides
CAMDA 03: Weakest Link Models for Detecting Small Groups of Genes to Predict Lung Cancer

CAMDA 03: Weakest Link Models for Detecting Small Groups of Genes to Predict Lung Cancer

CAMDA 03: Weakest Link Models for Detecting Small Groups of Genes to Predict Lung Cancer Survival Presenter: Thomas J. Richards, Ph.D. November 13, 2003 Affiliation: Dorothy P. &amp; Richard P. Simmons Center for Interstitial Lung

805 views • 61 slides
Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 11 Page 1 CS 236 Online Outline Introduction Characteristics of intrusion detection systems Some sample intrusion detection

143 views • 12 slides
Security: Computing in an Adversarial Environment Presenter Moderator Dr. Carrie Gates Dr.

Security: Computing in an Adversarial Environment Presenter Moderator Dr. Carrie Gates Dr.

Security: Computing in an Adversarial Environment Presenter Moderator Dr. Carrie Gates Dr. Christopher W. Clifton CA Technologies Purdue University carrie.gates@ca.com clifton@cs.purdue.edu ACM Learning Center ( http: / / learning.acm.org

826 views • 44 slides
Introduction to Computer Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C.

Introduction to Computer Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C.

Introduction to Computer Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L02 1 Outline of this Lecture A brief introduction to computer security A theoretical framework of computer security

972 views • 47 slides
Causal Model Extraction from Attack Trees to Attribute Malicious Insider Attacks Amjad Ibrahim,

Causal Model Extraction from Attack Trees to Attribute Malicious Insider Attacks Amjad Ibrahim,

Causal Model Extraction from Attack Trees to Attribute Malicious Insider Attacks Amjad Ibrahim, Simon Rehwald, Antoine Scemama, Florian Andres, Alexander Pretschner Technische Universitt Mnchen Department of Informatics Chair of Software

512 views • 24 slides
Modeling and Analysis of Security for Human Centric Systems Florian Kammller Middlesex

Modeling and Analysis of Security for Human Centric Systems Florian Kammller Middlesex

Modeling and Analysis of Security for Human Centric Systems Florian Kammller Middlesex University London &amp; TU Berlin Assessment of ICT Security Risks in Socio-Technical Systems16, 16. November 2016 Formal Models for Insider Threat

97 views • 9 slides
Towards Detecting Stealthy Attacks in Power Grid using Deep Learning Mohammad Ashrafuzzaman,

Towards Detecting Stealthy Attacks in Power Grid using Deep Learning Mohammad Ashrafuzzaman,

Towards Detecting Stealthy Attacks in Power Grid using Deep Learning Mohammad Ashrafuzzaman, Yacine Chakhchoukh and Frederick T. Sheldon Departments of Computer Science and Electrical &amp; Computer Engineering, University of Idaho, Moscow

425 views • 20 slides
Multi-Key Homomorphic Signatures Unforgeable under Insider Corruption Russell W. F. Lai 1,2 ,

Multi-Key Homomorphic Signatures Unforgeable under Insider Corruption Russell W. F. Lai 1,2 ,

Multi-Key Homomorphic Signatures Unforgeable under Insider Corruption Russell W. F. Lai 1,2 , Raymond K. H. Tai 2 , Harry W. H. Wong 2 , Sherman S. M. Chow 2 1 Friedrich-Alexander University Erlangen-Nuremberg 2 Chinese University of Hong Kong

618 views • 59 slides
Towards Automated Safety Vetting of PLC Code in Real-World Plants Mu Zhang , Chien-Ying

Towards Automated Safety Vetting of PLC Code in Real-World Plants Mu Zhang , Chien-Ying

Towards Automated Safety Vetting of PLC Code in Real-World Plants Mu Zhang , Chien-Ying Chen, Bin-Chou Kao, Yassine Qamsane, Yuru Shao, Yikai Lin, Elaine Shi , Sibin Mohan, Kira Barton, James Moyne and Z. Morley Mao

775 views • 22 slides

More recommend