Computational Game Theory for Security and Sustainability

Jiang, Albert Xin; Jain, Manish; Tambe, Milind

doi:10.2197/ipsjjip.22.176

Cited by 5 publications

(5 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…If they decided to attack, they then select a target and an attack modality. This situation fits precisely into a Stackelberg game, where the defense is the lead player and the attacker is the following player (Jiang, Jain, & Tambe, 2014). Building on research using this type of game to model such attacker-defender scenarios in security domains (e.g., see Pita et al, 2008;Shieh et al, 2012;Tsai et al, 2009), we model our problem as a Stackelberg game in which the defender moves first by allocating their available defensive resources and the attacker, after observing that move, decides if/how they are going to attack.…”

Section: Defensive Resource Allocation In Sports Mega-event: a Stacke...mentioning

confidence: 99%

Deterrence against Terrorist Attacks in Sports‐Mega Events: A Method to Identify the Optimal Portfolio of Defensive Countermeasures

et al. 2021

View full text Add to dashboard Cite

Sports mega‐events, such as the Olympic Games or the Super Bowl, are attractive targets for terrorist organizations, due to their visibility, size, and number of people involved. Two characteristics of sports mega‐events, however, make them distinctive in comparison with other well‐studied target protection problems in counterterrorism analysis (such as transportation hubs or infrastructure facilities). First, defensive measures are often publicly known. Second, their finite horizon means that deterrence against any attack must be prioritized. In this article we thus propose a method that identifies the best portfolio of defensive measures the defense may adopt, given a fixed budget, to minimize the chances of suffering a terrorist attack during a sports mega‐event. The method makes some relevant contributions to adversarial risk analysis: (i) it represents attackers that can choose among multiple attack scenarios and the no‐attack scenario; (ii) it measures the deterrence effect caused by synergic portfolios of defensive measures; and (iii) it proposes an algorithm that identifies dominated portfolios and may, thus, overcome the scalability problems inherent to this portfolio optimization. We apply this method to a real‐world defense problem, revisiting the defensive countermeasure planning for the 2016 Brazilian Olympic Games in Rio de Janeiro, Brazil. In the case study, we find a nonlinear relationship between budget expenditure and deterrence, as well as a decreasing marginal effectiveness use of resources after a given budget threshold, which would support a more efficient allocation of investments in the Games defense.

show abstract

Section: Defensive Resource Allocation In Sports Mega-event: a Stacke...mentioning

confidence: 99%

Deterrence against Terrorist Attacks in Sports‐Mega Events: A Method to Identify the Optimal Portfolio of Defensive Countermeasures

et al. 2021

View full text Add to dashboard Cite

show abstract

“…Indeed, GT-based software has been successfully applied in real-world security contexts, including airport security, coast guard, police, and anti-poaching (animal preservation) efforts (Tambe et al, 2014), providing much-needed evidence that theory based on small toy problems scales to real-world asymmetric 12 security contexts. Real world security decision aids go beyond normative game theory (picking some optimal mix of actions assuming a perfectly rational opponent), and attempt to include attacker subjective utilities in the equation.…”

Section: Dynamic Cognitive Models Of Attacker Preferencesmentioning

confidence: 99%

“…Game-theoretic approaches are useful for determining optimal mixes of strategies for leaving an attacker without a preferred strategy of their own. Moreover, GT-based defense algorithms have been successfully applied in many real-world security scenarios, including airport security, coast guard, police, and anti-poaching (animal preservation) efforts (Tambe et al, 2014). Veksler and Buchler (2016) and Cranford et al (2019) argue that cognitive modeling techniques, and more specifically model-tracing 1 and dynamic parameter fitting, may be used to track individual attacker preferences in real time, providing fairly high improvements over normative GT approaches in reducing the potential for successful attacks.…”

Section: Introductionmentioning

confidence: 99%

Cognitive Models in Cybersecurity: Learning From Expert Analysts and Predicting Attacker Behavior

et al. 2020

View full text Add to dashboard Cite

Cybersecurity stands to benefit greatly from models able to generate predictions of attacker and defender behavior. On the defender side, there is promising research suggesting that Symbolic Deep Learning (SDL) may be employed to automatically construct cognitive models of expert behavior based on small samples of expert decisions. Such models could then be employed to provide decision support for non-expert users in the form of explainable expert-based suggestions. On the attacker side, there is promising research suggesting that model-tracing with dynamic parameter fitting may be used to automatically construct models during live attack scenarios, and to predict individual attacker preferences. Predicted attacker preferences could then be exploited for mitigating risk of successful attacks. In this paper we examine how these two cognitive modeling approaches may be useful for cybersecurity professionals via two human experiments. In the first experiment participants play the role of cyber analysts performing a task based on Intrusion Detection System alert elevation. Experiment results and analysis reveal that SDL can help to reduce missed threats by 25%. In the second experiment participants play the role of attackers picking among four attack strategies. Experiment results and analysis reveal that model-tracing with dynamic parameter fitting can be used to predict (and exploit) most attackers' preferences 40 − 70% of the time. We conclude that studies and models of human cognition are highly valuable for advancing cybersecurity.

show abstract

“…In addition, it gives alert once the mixed-initiative overrides seem to degrade the desired randomization. With the similar physical security issues, Jiang et al [22] discuss challenges in security despite of limited resources. In this paper, authors focus on deployment and allocation of limited resources to prevent or reduce crimes in several large size domains such as airports, ports, forests, transit systems etc.…”

Section: Literature Reviewmentioning

confidence: 99%

A Game Theoretic Approach for Digital Forensic Tool Selection †

Karabiyik

2020

Mathematics

View full text Add to dashboard Cite

Digital forensic investigations are getting harder and more time consuming everyday because of various problems including rapid advances in technology, wide variety of available devices in investigations, and large amount of data to be analyzed. In order to tackle with these issues, digital forensic tools are developed by open-source communities and software companies. These software products are released as a complete toolkit or standalone tools targeting specific tasks. In either case, digital forensic investigators use these tools based on their familiarity because of previous training experiences, available funding from their agencies/businesses, tool’s ease of use, etc. Moreover, using additional tools to verify the findings is a common practice in digital forensic investigations. This is particularly common when the previously selected tools do not generate an expected output. In this paper, we propose a game theoretic approach to the tool selection problem in order to help investigators to make a decision on which digital forensic tool to use. We particularly focused on file carving tool usage when building and analyzing our model because of the available data on these tools. Our results show how important it is to investigate the dynamics of strategy changes between the tools during an investigation to increase the efficiency of the investigation using game theoretic modeling.

show abstract

Computational Game Theory for Security and Sustainability

Cited by 5 publications

References 21 publications

Deterrence against Terrorist Attacks in Sports‐Mega Events: A Method to Identify the Optimal Portfolio of Defensive Countermeasures

Deterrence against Terrorist Attacks in Sports‐Mega Events: A Method to Identify the Optimal Portfolio of Defensive Countermeasures

Cognitive Models in Cybersecurity: Learning From Expert Analysts and Predicting Attacker Behavior

A Game Theoretic Approach for Digital Forensic Tool Selection †

Contact Info

Product

Resources

About