research-article

Public Access

Compliance Control: Managed Vulnerability Surface in Social-Technological Systems via Signaling Games

Authors:

William Austin Casey,

Quanyan Zhu,

Jose Andre Morales,

Bud MishraAuthors Info & Claims

MIST '15: Proceedings of the 7th ACM CCS International Workshop on Managing Insider Security Threats

Pages 53 - 62

https://doi.org/10.1145/2808783.2808788

Published: 16 October 2015 Publication History

PDF eReader

Abstract

The agents of an organization, in fulfillment of their tasks, generate a cyber-physical-human trace, which is amenable to formal analysis with modal logic to verify safety and liveness properties. Trusted but non-trustworthy agents within an organization may attempt to conceal their true intentions, develop deceptive strategies, and exploit the organization--a scenario modeled here as a basic compliance signaling game. The challenge for the organization, only partially informed of its own true state, is in measuring and estimating its own safety and liveness properties as accurately as possible--the subject of this paper. To improve measurements, we suggest counter strategies where the organization presents honey objectives on a closely monitored attack surface to elicit exploitive actions and to estimate its own safety properties, an activity required for an adaptive response aiming to manage an organization's vulnerability and safety surfaces. We expand the basic game to a system of social-technological agents and tailor the encounter structure of evolutionary games to one that best fits a typical organization.

Focusing on these double-sided signaling games (compliance and measure) within a system of social-technological agents, we outline a simple gradient ascent-based control mechanism and report on its ability to select and stabilize desirable equilibria despite the typical non-stationarity and chaos within evolutionary game systems. We clarify the design of our feedback-driven control system by using behavioral sensing, estimation and numerical optimization, and actuation with micro-incentives.

References

[1]

Kiam Heong Ang, Gregory Chong, and Yun Li. Pid control system analysis, design, and technology. Control Systems Technology, IEEE Transactions on, 13(4):559--576, 2005.

Google Scholar

[2]

Karl Johan Astrom, Chang C Hang, Per Persson, and Weng Kuen Ho. Towards intelligent pid control. Automatica, 28(1):1--9, 1992.

Digital Library

Google Scholar

[3]

Ken Binmore and Larry Samuelson. Evolution and mixed strategies. Games and Economic Behavior, 34(2):200--226, 2001.

Crossref

Google Scholar

[4]

William Casey, Jose A. Morales, Thomson Nguyen, Jonathan Spring, Rhiannon Weaver, Evan Wright, Leigh Metcalf, and Bud Mishra. Cyber security via signaling games: Toward a science of cyber security. In ICDCIT, pages 34--42, 2014.

Digital Library

Google Scholar

[5]

William Casey, Rhiannon Weaver, Leigh Metcalf, Jose Andre Morales, Evan Wright, and Bud Mishra. Cyber security via minority games with epistatic signaling: Invited paper. In Proceedings of the 8th International Conference on Bioinspired Information and Communications Technologies, BICT '14, pages 133--140, ICST, Brussels, Belgium, Belgium, 2014. ICST (Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering).

Digital Library

Google Scholar

[6]

Andrew R Conn, Katya Scheinberg, and Ph L Toint. Recent progress in unconstrained nonlinear optimization without derivatives. Mathematical programming, 79(1-3):397--414, 1997.

Digital Library

Google Scholar

[7]

Simon M Huttegger and Brian Skyrms. Emergence of information transfer by inductive learning. Studia Logica, 89(2):237--256, 2008.

Crossref

Google Scholar

[8]

Simon M Huttegger, Brian Skyrms, Rory Smead, and Kevin JS Zollman. Evolutionary dynamics of lewis signaling games: signaling systems vs. partial pooling. Synthese, 172(1):177--191, 2010.

Crossref

Google Scholar

[9]

Lester Ingber. Simulated annealing: Practice versus theory. Mathematical and computer modelling, 18(11):29--57, 1993.

Digital Library

Google Scholar

[10]

Tamara G Kolda, Robert Michael Lewis, and Virginia Torczon. Optimization by direct search: New perspectives on some classical and modern methods. SIAM review, 45(3):385--482, 2003.

Crossref

Google Scholar

[11]

David Lewis. Convention: A philosophical study. John Wiley & Sons, 2008.

Google Scholar

[12]

Brian Skyrms. Signals: Evolution, learning, and information. Oxford University Press, 2010.

Google Scholar

[13]

Michael Spence. Job market signaling. The quarterly journal of Economics, pages 355--374, 1973.

Google Scholar

[14]

Peter J Van Laarhoven and Emile H Aarts. Simulated annealing: theory and applications, volume 37. Springer Science & Business Media, 1987.

Digital Library

Google Scholar

Cited By

View all

Huang LZhu Q(2024)ZETAR: Modeling and Computational Design of Strategic and Adaptive Compliance PoliciesIEEE Transactions on Computational Social Systems10.1109/TCSS.2023.332353911:3(4001-4015)Online publication date: Jun-2024
https://doi.org/10.1109/TCSS.2023.3323539
Shwedeh FSalloum SAburayya AFatin BElbadawi MAl Ghurabli ZAl Dabbagh T(2024)AI Adoption and Educational Sustainability in Higher Education in the UAEArtificial Intelligence in Education: The Power and Dangers of ChatGPT in the Classroom10.1007/978-3-031-52280-2_14(201-229)Online publication date: 30-Mar-2024
https://doi.org/10.1007/978-3-031-52280-2_14
Huang LZhu QHuang LZhu Q(2023)IntroductionCognitive Security10.1007/978-3-031-30709-6_1(1-25)Online publication date: 3-Jun-2023
https://doi.org/10.1007/978-3-031-30709-6_1
Show More Cited By

Index Terms

Compliance Control: Managed Vulnerability Surface in Social-Technological Systems via Signaling Games
1. Applied computing
  1. Law, social and behavioral sciences
2. Computing methodologies
  1. Modeling and simulation

Recommendations

Curiosity Killed the Organization: A Psychological Comparison between Malicious and Non-Malicious Insiders and the Insider Threat
RIIT '16: Proceedings of the 5th Annual Conference on Research in Information Technology

Insider threats remain a significant problem within organizations, especially as industries that rely on technology continue to grow. Traditionally, research has been focused on the malicious insider; someone that intentionally seeks to perform a ...
A pattern for increased monitoring for intellectual property theft by departing insiders
PLoP '11: Proceedings of the 18th Conference on Pattern Languages of Programs

A research project at the CERT^® Program is identifying enterprise architectural patterns to protect against the insider threat to organizations. This paper presents an example of such a pattern---Increased Monitoring for Intellectual Property (IP) Theft ...
Deceiving Cyber Adversaries: A Game Theoretic Approach
AAMAS '18: Proceedings of the 17th International Conference on Autonomous Agents and MultiAgent Systems

An important way cyber adversaries find vulnerabilities in modern networks is through reconnaissance, in which they attempt to identify configuration specifics of network hosts. To increase uncertainty of adversarial reconnaissance, the network ...

Comments

Information & Contributors

Information

Published In

MIST '15: Proceedings of the 7th ACM CCS International Workshop on Managing Insider Security Threats

October 2015

90 pages

ISBN:9781450338240

DOI:10.1145/2808783

General Chairs:
Elisa Bertino
Purdue University, USA
,
Ilsun You
Soon Chun Hyang University, Republic of Korea

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 16 October 2015

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

Department of Defense

Conference

CCS'15

Sponsor:

SIGSAC

CCS'15: The 22nd ACM Conference on Computer and Communications Security

October 16, 2015

Colorado, Denver, USA

Acceptance Rates

MIST '15 Paper Acceptance Rate 6 of 14 submissions, 43%;

Overall Acceptance Rate 21 of 54 submissions, 39%

Upcoming Conference

CCS '24

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

14
Total Citations
View Citations
321
Total Downloads

Downloads (Last 12 months)39
Downloads (Last 6 weeks)7

Reflects downloads up to 06 Oct 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Huang LZhu Q(2024)ZETAR: Modeling and Computational Design of Strategic and Adaptive Compliance PoliciesIEEE Transactions on Computational Social Systems10.1109/TCSS.2023.332353911:3(4001-4015)Online publication date: Jun-2024
https://doi.org/10.1109/TCSS.2023.3323539
Shwedeh FSalloum SAburayya AFatin BElbadawi MAl Ghurabli ZAl Dabbagh T(2024)AI Adoption and Educational Sustainability in Higher Education in the UAEArtificial Intelligence in Education: The Power and Dangers of ChatGPT in the Classroom10.1007/978-3-031-52280-2_14(201-229)Online publication date: 30-Mar-2024
https://doi.org/10.1007/978-3-031-52280-2_14
Huang LZhu QHuang LZhu Q(2023)IntroductionCognitive Security10.1007/978-3-031-30709-6_1(1-25)Online publication date: 3-Jun-2023
https://doi.org/10.1007/978-3-031-30709-6_1
Huang YHuang LZhu Q(2022)Reinforcement Learning for feedback-enabled cyber resilienceAnnual Reviews in Control10.1016/j.arcontrol.2022.01.00153(273-295)Online publication date: 2022
https://doi.org/10.1016/j.arcontrol.2022.01.001
Seo SKim D(2021)SOD2G: A Study on a Social-Engineering Organizational Defensive Deception Game Framework through Optimization of Spatiotemporal MTD and Decoy ConflictElectronics10.3390/electronics1023301210:23(3012)Online publication date: 2-Dec-2021
https://doi.org/10.3390/electronics10233012
Huang LZhu Q(2021)Duplicity Games for Deception Design with an Application to Insider Threat MitigationIEEE Transactions on Information Forensics and Security10.1109/TIFS.2021.3118886(1-1)Online publication date: 2021
https://doi.org/10.1109/TIFS.2021.3118886
Zhu MAnwar AWan ZCho JKamhoua CSingh M(2021)A Survey of Defensive Deception: Approaches Using Game Theory and Machine LearningIEEE Communications Surveys & Tutorials10.1109/COMST.2021.310287423:4(2460-2493)Online publication date: Dec-2022
https://doi.org/10.1109/COMST.2021.3102874
Huang LZhu Q(2020)Strategic Learning for Active, Adaptive, and Autonomous Cyber DefenseAdaptive Autonomous Secure Cyber Systems10.1007/978-3-030-33432-1_10(205-230)Online publication date: 5-Feb-2020
https://doi.org/10.1007/978-3-030-33432-1_10
Zhang THuang LPawlick JZhu Q(2020)Game‐Theoretic Analysis of Cyber DeceptionModeling and Design of Secure Internet of Things10.1002/9781119593386.ch2(27-58)Online publication date: 12-Jun-2020
https://doi.org/10.1002/9781119593386.ch2
Zhu QKoutsoukos XCardenas AAl-Shaer E(2019)Game theory for cyber deceptionProceedings of the 6th Annual Symposium on Hot Topics in the Science of Security10.1145/3314058.3314067(1-3)Online publication date: 1-Apr-2019
https://dl.acm.org/doi/10.1145/3314058.3314067
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Curiosity Killed the Organization: A Psychological Comparison between Malicious and Non-Malicious Insiders and the Insider Threat

A pattern for increased monitoring for intellectual property theft by departing insiders

Deceiving Cyber Adversaries: A Game Theoretic Approach