Adversarial Deep Reinforcement Learning Based Adaptive Moving Target Defense

Eghtesad, Taha; Vorobeychik, Yevgeniy; Lászka, Áron

doi:10.1007/978-3-030-64793-3_4

Cited by 17 publications

(9 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Overall, only one ACO Gym (CybORG [112] Cage Challenge 3 [53]) has recognised the need for automated multi-agent algorithms (A.4.1) as automated blue team solutions. [78] and [37] publications (specifically focusing on using RL for defending against DDoS attacks) environments could be a potential inspiration for structuring the ACO Gyms to facilitate multi-agent automated red and blue teaming collaboration (requirement G.4.1). Very few ACO Gyms facilitate adversarial training (G.6.1 and A.6.1), which could potentially utilised to strengthen the automated blue agent against a variety of cyber attacks (A.6.2).…”

Section: Combined Analysis Of All Aco Gymsmentioning

confidence: 99%

Automated Cyber Defence: A Review

Vyas¹,

Hannay²,

Bolton³

et al. 2023

Preprint

View full text Add to dashboard Cite

Within recent times, cybercriminals have curated a variety of organised and resolute cyber attacks within a range of cyber systems, leading to consequential ramifications to private and governmental institutions. Current security-based automation and orchestrations focus on automating fixed purpose and hard-coded solutions, which are easily surpassed by modern-day cyber attacks. Research within Automated Cyber Defence will allow the development and enabling intelligence response by autonomously defending networked systems through sequential decision-making agents. This article comprehensively elaborates the developments within Automated Cyber Defence through a requirement analysis divided into two sub-areas, namely, automated defence and attack agents and Autonomous Cyber Operation (ACO) Gyms. The requirement analysis allows the comparison of automated agents and highlights the importance of ACO Gyms for their continual development. The requirement analysis is also used to critique ACO Gyms with an overall aim to develop them for deploying automated agents within real-world networked systems. Relevant future challenges were addressed from the overall analysis to accelerate development within the area of Automated Cyber Defence.

show abstract

Section: Combined Analysis Of All Aco Gymsmentioning

confidence: 99%

Automated Cyber Defence: A Review

Vyas¹,

Hannay²,

Bolton³

et al. 2023

Preprint

View full text Add to dashboard Cite

show abstract

“…priate cost-benefit tradeoff and make useful decisions regarding when to reimage. 63 Similar approaches have allowed reinforcement learning agents to learn when to isolate potentially infected nodes within a constrained network or to develop game theoretic strategies for adaptively responding to adversaries. 64 These results are promising, because they suggest that machine learning could be useful for automating tactics like moving target defense or for providing responses to some types of threats, such as botnets.…”

Section: Response and Recoverymentioning

confidence: 99%

Machine Learning and Cybersecurity: Hype and Reality

Musser¹,

Garriott²

2021

View full text Add to dashboard Cite

show abstract

“…As a recent example, Cam presents a method and system for providing cyber resilience by integrating autonomous adversary and defender agents and deep reinforcement learning for predicting the current and future adversary activities, and then by enabling agents to take appropriate automated actions for preventing and mitigating adversary activities in [11]. Similarly, Taha et al [12] developed a multi-agent reinforcement framework to solve a two-player general-sum game formulated between an adversary and the defender. Sengupta et al [13] proposed a multi-agent RL algorithm that uses a Bayesian Strong Stackelberg Q-learning (BSS-Q) approach, improving the MTD for web-application security.…”

Section: A Cognitive Techniques For Cybersecurity In Network and Networked Servicesmentioning

confidence: 99%

“…An alternative model can include an additional agent, namely the attacker, enabling the MTD controller to further improve its reactive defense and attack mitigation. The environment and game theory model present added parameters for the attacker's identification and the prediction of his target [12]. Attackers' strategies can change with time, therefore the model needs to describe high-level attack patterns able to identify old and new attacks by analyzing behaviours and predicting the intentions (e.g., reconnaissance, Denial of Service (DoS), Command and Control (C&C), MitM, etc..).…”

Section: A Optsfc and Cognitive Techniques (Ai/ml Driven Control)mentioning

confidence: 99%

Moving Target Defense as a Proactive Defense Element for Beyond 5G

Soussi

Christopoulou

Xilouris

et al. 2021

IEEE Comm. Stand. Mag.

View full text Add to dashboard Cite

6G networks will take the digital services offered by 5G to a whole new level with considerably higher bit-rates, lower latency, and ultra reliability. However, the security of these systems is crucial to fulfill the promise of 6G. A critical element of this requirement is the efficient and pervasive security for the protection of 6G infrastructure and services. In this paper, we propose Moving Target Defense (MTD) as a key proactive defense element and elaborate on how it can be integrated into Beyond 5G systems. We also present the relevant research challenges and future research directions including the standardization perspective.

show abstract

Adversarial Deep Reinforcement Learning Based Adaptive Moving Target Defense

Cited by 17 publications

References 17 publications

Automated Cyber Defence: A Review

Automated Cyber Defence: A Review

Machine Learning and Cybersecurity: Hype and Reality

Moving Target Defense as a Proactive Defense Element for Beyond 5G

Contact Info

Product

Resources

About