How Task Familiarity and Cognitive Predispositions Impact Behavior in a Security Game of Timing

Großklags, Jens; Reitter, David

doi:10.1109/csf.2014.16

Cited by 16 publications

(11 citation statements)

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In contrast, average risk-seeking individuals benefit strongly from a high NFC and suffer considerably from a low NFC. 4 This effect is particularly strong for Study 1 (see Figure 9b).…”

Section: Interaction Effect Of Risk Propensity and Need For Cognitionmentioning

confidence: 85%

“…In this paper, we present two exploratory studies that show how an individual's personality characteristics of risk propensity and need for cognition influence behavior over increasing task experience in a game that models safety and security decisions. Our paper benefits from earlier conference presentations of this data [3,4]. Here, we add context and an analysis of timing bias in addition to the analysis of the payoff bias we observed.…”

Section: Introductionmentioning

confidence: 96%

See 1 more Smart Citation

The Positive Impact of Task Familiarity, Risk Propensity, and Need For Cognition on Observed Timing Decisions in a Security Game

Reitter

Großklags

2019

Games

Self Cite

View full text Add to dashboard Cite

This paper addresses the role of personality characteristics in decisions on the timing of an action, such as in the context of security and safety choices. Examples of such decisions include when to check log files for intruders and when to monitor financial accounts for fraud or errors. Two behavioral studies (n = 461) are conducted. Individual risk propensity and need for cognition are obtained via scales. The task is a game against an opaque computer opponent in which participants make decisions about the timing of actions in response to an unknown external risk factor. The task is not payoff-neutral w.r.t. risk. Difficulty is varied through the availability of explicitly given or decision-critical information, which is observable visually (Study 1) or in temporal memory (Study 2). Across this problem space, we find that risk propensity is not generally a hindrance in timing tasks. Participants of average risk propensity generally benefit from a high need for cognition, particularly when externalized memory is available, as in Study 1. In the more difficult temporal-estimation task, need for cognition was associated with increased payoffs from task experience. In both tasks, higher risk propensity in participants was associated with increased improvements in payoffs from task experience.

show abstract

“…In contrast, average risk-seeking individuals benefit strongly from a high NFC and suffer considerably from a low NFC. 4 This effect is particularly strong for Study 1 (see Figure 9b).…”

Section: Interaction Effect Of Risk Propensity and Need For Cognitionmentioning

confidence: 85%

Section: Introductionmentioning

confidence: 96%

The Positive Impact of Task Familiarity, Risk Propensity, and Need For Cognition on Observed Timing Decisions in a Security Game

Reitter

Großklags

2019

Games

Self Cite

View full text Add to dashboard Cite

show abstract

“…Risk taking was a stronger predictor of cookie acceptance than impulsivity in this study. Risk taking has been found to be a predictor of other security behaviors (see Grossklags and Reitter, 2014 ). This supports findings by Zeelenberg et al (1996) that risk takers are less likely to be concerned about the repercussions of their actions and less likely to consider any subsequent regret.…”

Section: Discussionmentioning

confidence: 99%

“…Existing research also suggests that personality factors may interact with social manipulations to influence decision-making as personality traits may often affect behavior indirectly through influencing normative determinants of behavior ( Rosenstock, 1974 ; Ajzen, 1991 ). In the security and privacy domains, a range of candidate personality traits can be identified that are likely to affect decision-making, including impulsivity, risk-taking/risk propensity ( Grossklags and Reitter, 2014 ), willingness to self-disclose information about oneself, and sociability. These are described in more detail below.…”

Section: Introductionmentioning

confidence: 99%

Personality and Social Framing in Privacy Decision-Making: A Study on Cookie Acceptance

et al. 2016

View full text Add to dashboard Cite

Despite their best intentions, people struggle with the realities of privacy protection and will often sacrifice privacy for convenience in their online activities. Individuals show systematic, personality dependent differences in their privacy decision making, which makes it interesting for those who seek to design ‘nudges’ designed to manipulate privacy behaviors. We explore such effects in a cookie decision task. Two hundred and ninety participants were given an incidental website review task that masked the true aim of the study. At the task outset, they were asked whether they wanted to accept a cookie in a message that either contained a social framing ‘nudge’ (they were told that either a majority or a minority of users like themselves had accepted the cookie) or contained no information about social norms (control). At the end of the task, participants were asked to complete a range of personality assessments (impulsivity, risk-taking, willingness to self-disclose and sociability). We found social framing to be an effective behavioral nudge, reducing cookie acceptance in the minority social norm condition. Further, we found personality effects in that those scoring highly on risk-taking and impulsivity were significantly more likely to accept the cookie. Finally, we found that the application of a social nudge could attenuate the personality effects of impulsivity and risk-taking. We explore the implications for those working in the privacy-by-design space.

show abstract

“…Zhang et al consider limited resources with an upper bound on the frequency of moves and analyze Nash Equilibria in this setting [25]. Several games study human defenders players against automated attackers using Periodic strategies [20,8,18]. All of this work uses exclusively non-adaptive players, often limiting analysis to solely opponents playing periodically.…”

Section: Related Workmentioning

confidence: 99%

$$\mathsf {QFlip}$$ : An Adaptive Reinforcement Learning Strategy for the $$\mathsf {FlipIt}$$ Security Game

Oakley

Oprea

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

A rise in Advanced Persistent Threats (APTs) has introduced a need for robustness against long-running, stealthy attacks which circumvent existing cryptographic security guarantees. FlipIt is a security game that models attacker-defender interactions in advanced scenarios such as APTs. Previous work analyzed extensively non-adaptive strategies in FlipIt, but adaptive strategies rise naturally in practical interactions as players receive feedback during the game. We model the FlipIt game as a Markov Decision Process and introduce QFlip, an adaptive strategy for FlipIt based on temporal difference reinforcement learning. We prove theoretical results on the convergence of our new strategy against an opponent playing with a Periodic strategy. We confirm our analysis experimentally by extensive evaluation of QFlip against specific opponents. QFlip converges to the optimal adaptive strategy for Periodic and Exponential opponents using associated state spaces. Finally, we introduce a generalized QFlip strategy with composite state space that outperforms a Greedy strategy for several distributions including Periodic and Uniform, without prior knowledge of the opponent's strategy. We also release an OpenAI Gym environment for FlipIt to facilitate future research.

show abstract

How Task Familiarity and Cognitive Predispositions Impact Behavior in a Security Game of Timing

Cited by 16 publications

References 40 publications

The Positive Impact of Task Familiarity, Risk Propensity, and Need For Cognition on Observed Timing Decisions in a Security Game

The Positive Impact of Task Familiarity, Risk Propensity, and Need For Cognition on Observed Timing Decisions in a Security Game

Personality and Social Framing in Privacy Decision-Making: A Study on Cookie Acceptance

$$\mathsf {QFlip}$$ : An Adaptive Reinforcement Learning Strategy for the $$\mathsf {FlipIt}$$ Security Game

Contact Info

Product

Resources

About