The Risk of Attacker Behavioral Learning: Can Attacker Fool Defender Under Uncertainty?

Thanh Hong Nguyen, Amulya Yadav

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

In security games, the defender often has to predict the attacker’s behavior based on some observed attack data. However, a clever attacker can intentionally change its behavior to mislead the defender’s learning, leading to an ineffective defense strategy. This paper investigates the attacker’s imitative behavior deception under uncertainty, in which the attacker mimics a (deceptive) behavior model by consistently playing according to that model, given that it is uncertain about the defender’s learning outcome. We have three main contributions. First, we introduce a new maximin-based algorithm to compute a robust attacker deception decision. Second, we propose a new counter-deception algorithm to tackle the attacker’s deception. We show that there is a universal optimal defense solution, regardless of any private knowledge the defender has about the relation between his learning outcome and the attacker deception choice. Third, we conduct extensive experiments, demonstrating the effectiveness of our proposed algorithms.

Original languageEnglish (US)
Title of host publicationDecision and Game Theory for Security - 13th International Conference, GameSec 2022, Proceedings
EditorsFei Fang, Haifeng Xu, Yezekael Hayel
PublisherSpringer Science and Business Media Deutschland GmbH
Pages3-22
Number of pages20
ISBN (Print)9783031263682
DOIs
StatePublished - 2023
Event13th International Conference on Decision and Game Theory for Security, GameSec 2022 - Pittsburgh, United States
Duration: Oct 26 2022Oct 28 2022

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume13727 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference13th International Conference on Decision and Game Theory for Security, GameSec 2022
Country/TerritoryUnited States
CityPittsburgh
Period10/26/2210/28/22

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • General Computer Science

Fingerprint

Dive into the research topics of 'The Risk of Attacker Behavioral Learning: Can Attacker Fool Defender Under Uncertainty?'. Together they form a unique fingerprint.

Cite this