mitigating covert compromises a game theoretic model of
play

Mitigating Covert Compromises: A Game-Theoretic Model of Targeted - PowerPoint PPT Presentation

Jul 09, 2023 •433 likes •867 views

Mitigating Covert Compromises: A Game-Theoretic Model of Targeted and Non-Targeted Covert Attacks Aron Laszka 1 , 2 Benjamin Johnson 3 Jens Grossklags 1 1 Pennsylvania State University 2 Budapest University of Technology and Economics 3 University

  1. Mitigating Covert Compromises: A Game-Theoretic Model of Targeted and Non-Targeted Covert Attacks Aron Laszka 1 , 2 Benjamin Johnson 3 Jens Grossklags 1 1 Pennsylvania State University 2 Budapest University of Technology and Economics 3 University of California, Berkeley WINE 2013 Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 1 / 23

  2. Motivation Continuous covert attacks against resources ◮ attackers often want to keep successful security compromises covert ◮ examples ⋆ cyber-espionage: targets should not be aware that they are being spied on ⋆ botnets: targets should not be aware that their computers are infected Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 2 / 23

  3. Motivation Continuous covert attacks against resources ◮ mitigation of covert attacks ⋆ minimizing possible losses by resetting the resource to a secure state ⋆ e.g., resetting passwords, changing private keys, reinstalling servers ◮ since the attacks are covert, the question arises: when to reset the resource? ⋆ what is the economically optimal frequency? ⋆ what is the optimal scheduling? traditionally, security is more concerned with what to do and how to do it in practice: usually periodic password and key renewal policies Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 2 / 23

  4. Motivation (contd.) Continuous covert attacks against resources Targeted and non-targeted attacks ◮ extent to which the attack is customized for a particular target Targeted Non-Targeted Example cyber-espionage botnets Number of targets low high Number of attackers low high Effort required for each attack high low Success probability of each attack high low Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 3 / 23

  5. Related Work Timing games: ◮ since the cold-war era, games of timing have been studied with the tools of non-cooperative game theory FlipIt [1]: ◮ in response to recent-high profile stealthy attacks, researchers at RSA proposed the FlipIt model ◮ mitigation of targeted attacks ◮ lesson: defender should play upredictably [1] K. D. Bowers, M. van Dijk, R. Griffin, A. Juels, A. Oprea, R. L. Rivest, and N. Triandopoulos. Defending against the unknown enemy: Applying FlipIt to system security. In GameSec, pages 248–263, 2012 Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 4 / 23

  6. Model Strategic players: ◮ defender (denoted by D ) ◮ targeting attacker (denoted by A ) + non-strategic actors: non-targeting attackers (denoted by N ) Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 5 / 23

  7. Model Strategic players Resource: ◮ some computing resource, e.g., user account, machine ◮ having it compromised generates B i benefit per unit of time for attacker i Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 5 / 23

  8. Model Strategic players Resource: ◮ some computing resource, e.g., user account, machine ◮ having it compromised generates B i benefit per unit of time for attacker i Time: ◮ continuous ◮ game starts at time t = 0 with the resource being uncompromised ◮ and played indefinitely as t → ∞ t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 5 / 23

  9. Model Strategic players Resource Time Moves: ◮ at any time instance, player i may make a move, which costs her C i ◮ when the defender makes a move, the resource becomes uncompromised immediately, but the attackers will know of it ◮ when the targeting attacker makes a move, she starts her attack, which takes some random amount of time ⋆ distribution of the attack time is given by the cumulative function F A , but the attackers’ moves are stealthy (i.e., the defender does not know when the resource became compromised or if it is compromised at all) t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 5 / 23

  10. Model Strategic players Resource Time Moves Strategies: ◮ set of rules, algorithm, etc. for making moves ◮ in practice: defender’s key or password update policy, targeting attacker’s plan of attack, etc. t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 5 / 23

  11. Model Strategic players Resource Time Moves Strategies Payoffs: ◮ targeting attacker: b A − c A ◮ defender: − ( b A + b N ) − c D ◮ benefit (loss) rate b i : average fraction of time i has the resource compromised × unit benefit B i ◮ cost rate c i : average number of moves per unit of time × move cost C i t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 5 / 23

  12. Strategies Adaptive strategies (for attackers): ◮ an attacker uses an adaptive strategy if, after each move of the defender, she computes the time of her next move based on the defender’s all previous moves using some non-deterministic function ◮ this class is a simple representation of all the rational strategies available to an attacker t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 6 / 23

  13. Strategies Adaptive strategies (for attackers) Renewal strategies: ◮ player i uses a renewal strategy if the time intervals between her consecutive moves are identically distributed independent random variables ◮ renewal strategies are well-motivated for the defender by the fact that the defender is playing blindly; thus, she has the same information available after each move R 1 R 2 R 3 R 4 R 5 R j ∼ R t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 6 / 23

  14. Strategies Adaptive strategies (for attackers) Renewal strategies Periodic strategies: ◮ player i uses a periodic strategy if the time intervals between her consecutive moves are identical (this period is denoted by δ i ) δ δ δ δ t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 6 / 23

  15. Strategies Adaptive strategies (for attackers) Renewal strategies Periodic strategies Not moving: ◮ a player can choose to never move ◮ while this might seem counter-intuitive, it is actually a best-response if the expected benefit from making a move is always less than the cost of moving t Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 6 / 23

  16. Non-Targeted Attacks in practice, the number of non-targeting attackers is very large number of attackers ≫ 0 Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 7 / 23

  17. Non-Targeted Attacks in practice, the number of non-targeting attackers is very large, but the expected number of attacks in any time interval is finite number of attackers ≫ 0 number of attacks = finite Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 7 / 23

  18. Non-Targeted Attacks in practice, the number of non-targeting attackers is very large, but the expected number of attacks in any time interval is finite − → the probability that a given non-targeting attacker targets the defender approaches zero number of attackers ≫ 0 number of attacks = finite probability ≈ 0 Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 7 / 23

  19. Non-Targeted Attacks in practice, the number of non-targeting attackers is very large, but the expected number of attacks in any time interval is finite − → the probability that a given non-targeting attacker targets the defender approaches zero since non-targeting attackers operate independently, the number of successful attacks in any time interval depends solely on the length of the interval − → arrival of non-targeted attacks follows a Poisson process t number of attacks = finite probability ≈ 0 Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 7 / 23

  20. Non-Targeted Attacks (contd.) the arrival of non-targeted attacks follows a Poisson process furthermore, since the economic decisions of the non-targeting attackers depend on a very large pool of possible targets, the effect of the defender’s strategy choice on the non-targeting attackers’ strategies is negligible − → non-targeting attackers’ strategies can be considered exogenously given that is, the expected number of arrivals that occur per unit of time, denoted by λ N , is exogenously given number of targets ≫ 0 effect of defender’s strategy choice ≈ 0 Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 8 / 23

  21. Game-Theoretic Analysis Defender has to play “blindly” − → after each one of her moves, she has the same information (and can be assumed to make her decision the same way) − → defender plays a renewal strategy Laszka et al. (PennState, BME, Berkeley) Mitigating Covert Compromises WINE 2013 9 / 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Game Theoretic Pragmatics Michael Franke Preliminaries Game Theory Fundamentals Interpretation

Game Theoretic Pragmatics Michael Franke Preliminaries Game Theory Fundamentals Interpretation

Game Theoretic Pragmatics Michael Franke Preliminaries Game Theory Fundamentals Interpretation Games IBR Interpreting BiOT Game Theoretic Pragmatics . . . aims for mathematically precise models of language use and interpretation . . .

730 views • 61 slides
Game theoretic learning using the imprecise Dirichlet model Erik Quaeghebeur & Gert de

Game theoretic learning using the imprecise Dirichlet model Erik Quaeghebeur & Gert de

Game theoretic learning using the imprecise Dirichlet model Erik Quaeghebeur & Gert de Cooman {Erik.Quaeghebeur,Gert.deCooman}@UGent.be SYSTeMS research group Ghent University, Belgium My promoter, myself and my research Presented

140 views • 9 slides
A Game-Theoretic Approach to Network Security Mohammad Pirani and Henrik Sandberg Department of

A Game-Theoretic Approach to Network Security Mohammad Pirani and Henrik Sandberg Department of

A Game-Theoretic Approach to Network Security Mohammad Pirani and Henrik Sandberg Department of Automatic Control KTH Royal Institute of Technology Outline Defense mechanisms in cyber physical systems security Game-theoretic

489 views • 24 slides
Derandomization in Game- Theoretic Probability Kenshi Miyabe, Meiji University, Japan (joint

Derandomization in Game- Theoretic Probability Kenshi Miyabe, Meiji University, Japan (joint

Derandomization in Game- Theoretic Probability Kenshi Miyabe, Meiji University, Japan (joint work with Akimichi Takemura) Fifth Workshop on Game-Theoretic Probability and Related Topics 13 Nov 2014 This talk is mainly based on

393 views • 28 slides
A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti

A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti

Introduction Model Decentralized mechanism Conclusion A Game-Theoretic Approach to Decentralized Optimal Power Allocation for Cellular Networks Shruti Sharma Ph.D. candidate, Electrical Engineering and Computer Science and Demos Teneketzis

986 views • 40 slides
Incentives and Game-Theoretic Considerations in Bitcoin Jonathan Katz 1 Background 2 Basic

Incentives and Game-Theoretic Considerations in Bitcoin Jonathan Katz 1 Background 2 Basic

Incentives and Game-Theoretic Considerations in Bitcoin Jonathan Katz 1 Background 2 Basic game theory Normal-form game N players; each player P i has a set of available actions A i A = A i x x A N is the set of outcomes

950 views • 91 slides
Intoduction to the Fifth Workshop Game-Theoretic Probability and Related Topics Glenn Shafer 13

Intoduction to the Fifth Workshop Game-Theoretic Probability and Related Topics Glenn Shafer 13

Intoduction to the Fifth Workshop Game-Theoretic Probability and Related Topics Glenn Shafer 13 November 2014 1. Basics of game-theoretic probability 2. Probability-free finance 3. Prediction Glenn Shafer (Rutgers University) Intoduction to

482 views • 14 slides
Overcoming Limitations of Game-Theoretic Distributed Control Jason R. Marden California

Overcoming Limitations of Game-Theoretic Distributed Control Jason R. Marden California

Overcoming Limitations of Game-Theoretic Distributed Control Jason R. Marden California Institute of Technology (joint work with Adam Wierman) Southern California Network Economics and Game Theory Symposium October 1, 2009 Engineering systems

649 views • 61 slides
Incentives in Crowdsourcing: A Game-theoretic Approach ARPITA GHOSH Cornell University NIPS

Incentives in Crowdsourcing: A Game-theoretic Approach ARPITA GHOSH Cornell University NIPS

Incentives in Crowdsourcing: A Game-theoretic Approach ARPITA GHOSH Cornell University NIPS 2013 Workshop on Crowdsourcing: Theory, Algorithms, and Applications Incentives in Crowdsourcing: A Game-theoretic Approach 1 / 26 Users on the Web:

1.48k views • 90 slides
Incentives and Game-Theoretic Considerations in Bitcoin Jonathan Katz 1 Bitcoin provides a

Incentives and Game-Theoretic Considerations in Bitcoin Jonathan Katz 1 Bitcoin provides a

Incentives and Game-Theoretic Considerations in Bitcoin Jonathan Katz 1 Bitcoin provides a rich playground in which to explore the effects of rational behavior Jonathan Katz 2 Background 3 Basic game theory Normal - form

640 views • 50 slides
Design of intelligent surveillance systems: a game theoretic case Nicola Basilico Department of

Design of intelligent surveillance systems: a game theoretic case Nicola Basilico Department of

Design of intelligent surveillance systems: a game theoretic case Nicola Basilico Department of Computer Science University of Milan Outline Introduction to Game Theory and solution concepts Game definition Solution concepts:

1.12k views • 60 slides
Game theoretic modeling, analysis, and mitigation of security risks. Assane Gueye

Game theoretic modeling, analysis, and mitigation of security risks. Assane Gueye

Game theoretic modeling, analysis, and mitigation of security risks. Assane Gueye NIST/ITL/CCTG, Gaithersberg NIST ACMD Seminar Tuesday, June 7, 2011 Click to edit Master subtitle style 6/7/11 Outline Motivations 1. Security 1. Game

542 views • 35 slides
2. A Game Theoretic Analysis of the ESP Game Ming Yin and Steve Komarov Human Computation Today

2. A Game Theoretic Analysis of the ESP Game Ming Yin and Steve Komarov Human Computation Today

1. Games with a Purpose 2. A Game Theoretic Analysis of the ESP Game Ming Yin and Steve Komarov Human Computation Today Games with Purpose reCAPTCHA Citizen Science Duolingo Open Human Mind Computation Initiative Lab in the Wild

686 views • 46 slides
Algorithmic Coalitional Game Theory Lecture 10: Game-Theoretic Network Centralities Oskar Skibski

Algorithmic Coalitional Game Theory Lecture 10: Game-Theoretic Network Centralities Oskar Skibski

Algorithmic Coalitional Game Theory Lecture 10: Game-Theoretic Network Centralities Oskar Skibski University of Warsaw 05.05.2020 Centrality Measures Centrality Measure Centrality (measure) is a function : ! ! that assigns to

509 views • 28 slides
Position paper: Proof-Theoretic Semantics as a viable alternative to Model-Theoretic Semantics

Position paper: Proof-Theoretic Semantics as a viable alternative to Model-Theoretic Semantics

Position paper: Proof-Theoretic Semantics as a viable alternative to Model-Theoretic Semantics for natural language Nissim Francez Computer Science dept., the Technion-IIT, Haifa, Israel (francez@cs.technion.ac.il) Introduction This

165 views • 13 slides
CIMAT, Guanajuato, Mexico 5th Workshop on Game-Theoretic Probability and Related Topics, 13-15

CIMAT, Guanajuato, Mexico 5th Workshop on Game-Theoretic Probability and Related Topics, 13-15

CIMAT, Guanajuato, Mexico 5th Workshop on Game-Theoretic Probability and Related Topics, 13-15 November 2014 A Prequential Approach to Financial Risk Management Mark Davis Department of Mathematics Imperial College London

690 views • 37 slides
Continuous Delivery mit Docker Berlin Expert Days 2014 Dr. Halil-Cem Grsoy adesso AG 04.04.14

Continuous Delivery mit Docker Berlin Expert Days 2014 Dr. Halil-Cem Grsoy adesso AG 04.04.14

Continuous Delivery mit Docker Berlin Expert Days 2014 Dr. Halil-Cem Grsoy adesso AG 04.04.14 04.04.14 Continuous Delivery mit Docker http://www.flickr.com/photos/jpmartineau/501718334/ Definition und Provisionierung eines Linux-Containers

694 views • 26 slides
Strings, string patterns using regular expressions Steve Bagley somgen223.stanford.edu 1

Strings, string patterns using regular expressions Steve Bagley somgen223.stanford.edu 1

Strings, string patterns using regular expressions Steve Bagley somgen223.stanford.edu 1 Strings somgen223.stanford.edu 2 s <- c ("a", "ab", "abcdef") length (s) [1] 3 str_length (s) [1] 1 2 6 Strings in R

532 views • 26 slides
Similarity & Link Analysis Stony Brook University CSE545, Fall 2016 Finding Similar

Similarity & Link Analysis Stony Brook University CSE545, Fall 2016 Finding Similar

Similarity & Link Analysis Stony Brook University CSE545, Fall 2016 Finding Similar Items ? (http://blog.soton.ac.uk/hive/2012/05/10/r ecommendation-system-of-hive/) (http://www.datacommunitydc.org/blog/20

1.45k views • 111 slides
2 3 4 5 6 7 Baltzan,P. & Phillips, A., 2010. Business Driven Technology, 4 th edition .

2 3 4 5 6 7 Baltzan,P. & Phillips, A., 2010. Business Driven Technology, 4 th edition .

2 3 4 5 6 7 Baltzan,P. & Phillips, A., 2010. Business Driven Technology, 4 th edition . USA: McGraw-Hill. 8 Baltzan,P. & Phillips, A., 2010. Business Driven Technology, 4 th edition . USA: McGraw-Hill. 9 10 Baltzan,P. & Phillips,

800 views • 32 slides
Randomness and determinism in Diophantine approximation: small linear forms, lattice flows and

Randomness and determinism in Diophantine approximation: small linear forms, lattice flows and

Randomness and determinism in Diophantine approximation: small linear forms, lattice flows and some applications Victor Beresnevich Department of Mathematics University of York Imperial College London 18 January 2017 PLAN: V. Beresnevich

1.64k views • 137 slides
ECED2200 Digital Circuits Karnaugh Maps 16/07/2012 Colin OFlynn - CC BY-SA 1 General

ECED2200 Digital Circuits Karnaugh Maps 16/07/2012 Colin OFlynn - CC BY-SA 1 General

ECED2200 Digital Circuits Karnaugh Maps 16/07/2012 Colin OFlynn - CC BY-SA 1 General Notes See updates to these slides: www.newae.com/teaching These slides licensed under Creative Commons Attribution-ShareAlike 3.0

925 views • 48 slides
NetFPGA Summer Course Presented by: Noa Zilberman Yury Audzevich Technion August 2 August

NetFPGA Summer Course Presented by: Noa Zilberman Yury Audzevich Technion August 2 August

NetFPGA Summer Course Presented by: Noa Zilberman Yury Audzevich Technion August 2 August 6, 2015 http://NetFPGA.org Summer Course Technion, Haifa, IL 2015 1 The secret recipe for a working simulation 1. source tools/settings.sh 2.

427 views • 3 slides
Principles of Program Analysis: Data Flow Analysis Transparencies based on Chapter 2 of the book:

Principles of Program Analysis: Data Flow Analysis Transparencies based on Chapter 2 of the book:

Principles of Program Analysis: Data Flow Analysis Transparencies based on Chapter 2 of the book: Flemming Nielson, Hanne Riis Nielson and Chris Hankin: Principles of Program Analysis. Springer Verlag 2005. c Flemming Nielson & Hanne

719 views • 43 slides

More recommend