SaTC: CORE: Small: Towards Robust Moving Target Defense: A Game Theoretic and Learning Approach

SaTC:核心:小型:迈向稳健的移动目标防御:博弈论和学习方法

基本信息

  • 批准号:
    1816495
  • 负责人:
  • 金额:
    $ 24.42万
  • 依托单位:
  • 依托单位国家:
    美国
  • 项目类别:
    Standard Grant
  • 财政年份:
    2018
  • 资助国家:
    美国
  • 起止时间:
    2018-08-15 至 2022-07-31
  • 项目状态:
    已结题

项目摘要

Malicious attacks are constantly evolving to inflict even more damage on the nation's infrastructure systems, corporate information technology (IT) systems, and our digital lives. A fundamental obstacle to achieving effective defense is information asymmetry, through which, under current static and passive defense schemes, the attacker has essentially limitless time to observe and learn about the defender, while the defender knows very little about the attacker. A promising approach to reverse information asymmetry is Moving Target Defense (MTD), whereby the defender dynamically updates system configurations to impede the attacker's learning process. Although MTD has been successfully applied in various domains, existing solutions typically assume an attacker with fixed capabilities and behavioral patterns that are known to the defender. The overarching goal of this project is to develop the foundations for the design and analysis of robust MTD mechanisms that can provide a guaranteed level of protection in the face of unknown and adaptive attacks. The proposed research contributes to the emerging field of the science of security via a cross-disciplinary approach that combines techniques from cybersecurity, game theory, and machine learning. The investigator will disseminate the research findings to industry to help impact real systems. Elements from this research are to be incorporated into new courses on cybersecurity at Tulane University. The project engages underrepresented students and K-12 students and provides rich research experience to undergraduate students.Developing robust MTD faces three major challenges induced by (1) the coupling of system dynamics and incentives; (2) the hidden behavior of stealthy attacks; (3) the necessity of coordinating multiple defenders in large systems. To tackle these challenges, the investigator will focus on three interrelated thrust areas. In the first thrust, a dynamic two-timescale MTD game that captures a variety of attack patterns and feedback structures is designed and techniques for handling games with large state spaces are investigated. In the second thrust, reinforcement learning-based MTD policies for thwarting unknown attacks are studied. The focus is on developing approximately optimal solutions with low complexity that can effectively exploit the delayed and noisy feedback during the game. In the third thrust, the MTD game and learning framework are extended to incorporate multiple attackers and defenders, and information sharing and mediation schemes for enabling coordinated MTD are investigated. The developed game models and defense strategies are validated via testbed implementations and trace-driven simulations. The research outcomes are expected to provide new insights and novel mechanisms that will significantly advance our understanding of how strategic thinking and learning can help achieve more adaptive cyber defense against advanced attacks.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
恶意攻击不断地不断发展,对国家的基础设施系统,公司信息技术(IT)系统和我们的数字生活造成更大的破坏。实现有效防御的根本障碍是信息不对称性,在当前的静态和被动防御计划下,攻击者基本上有无限的时间来观察和了解防守者,而后卫对攻击者的了解很少。反向信息不对称的一种有前途的方法是移动目标防御(MTD),后卫动态更新系统配置以阻止攻击者的学习过程。尽管MTD已成功地应用于各个域中,但现有解决方案通常假设具有固定功能和行为模式的攻击者已知。该项目的总体目标是为强大的MTD机制设计和分析开发基础,这些机制可以在面对未知和适应性攻击的情况下提供保证的保护水平。拟议的研究通过跨学科的方法为新兴的安全科学领域做出了贡献,该方法结合了网络安全,游戏理论和机器学习的技术。研究人员将向行业传播研究结果,以帮助影响实际系统。这项研究的元素将纳入杜兰大学的网络安全课程中。该项目吸引了代表性不足的学生和K-12学生,并为本科生提供丰富的研究经验。建立强大的MTD面临着(1)系统动态和激励措施的耦合所引起的三个主要挑战; (2)隐秘攻击的隐藏行为; (3)在大型系统中协调多个防御者的必要性。为了应对这些挑战,调查人员将专注于三个相互关联的推力区域。在第一个推力中,设计了一种动态的两次尺度MTD游戏,该游戏捕获了各种攻击模式和反馈结构,并研究了处理具有较大状态空间的游戏的技术。在第二个推力中,研究了基于加强学习的MTD政策,以挫败未知攻击。重点是开发具有低复杂性的大约最佳解决方案,可以有效利用游​​戏过程中延迟和嘈杂的反馈。在第三个推力中,MTD游戏和学习框架扩展了以结合多个攻击者和防御者,并研究了启用协调MTD的信息共享和调解方案。开发的游戏模型和防御策略通过测试台实现和痕量驱动模拟验证。预计研究结果将提供新的见解和新颖的机制,从而大大提高我们对战略思维和学习如何有助于实现对先进攻击的更适应性的网络防御的理解。该奖项反映了NSF的法定任务,并被认为是值得通过基金会的知识分子优点和更广泛的影响来通过评估来支持的。

项目成果

期刊论文数量(7)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
Learning to Attack Distributionally Robust Federated Learning
学习攻击分布式鲁棒联邦学习
Robust Moving Target Defense Against Unknown Attacks: A Meta-reinforcement Learning Approach
  • DOI:
    10.1007/978-3-031-26369-9_6
  • 发表时间:
    2022
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Henger Li;Zizhan Zheng
  • 通讯作者:
    Henger Li;Zizhan Zheng
Spatial-Temporal Moving Target Defense: A Markov Stackelberg Game Model
  • DOI:
  • 发表时间:
    2020-02
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Henger Li;Wenxian Shen;Zizhan Zheng
  • 通讯作者:
    Henger Li;Wenxian Shen;Zizhan Zheng
Optimal Timing of Moving Target Defense: A Stackelberg Game Model
Defending Against Stealthy Attacks on Multiple Nodes With Limited Resources: A Game-Theoretic Analysis
{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Zizhan Zheng其他文献

Sparse Deployment of Large Scale Wireless Networks for Mobile Targets
  • DOI:
  • 发表时间:
    2010
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Zizhan Zheng
  • 通讯作者:
    Zizhan Zheng
Belief-Enriched Pessimistic Q-Learning against Adversarial State Perturbations
针对对抗性状态扰动的信念丰富的悲观 Q 学习
  • DOI:
    10.48550/arxiv.2403.04050
  • 发表时间:
    2024
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Xiaolin Sun;Zizhan Zheng
  • 通讯作者:
    Zizhan Zheng
On the efficiency-vs-security tradeoff in the smart grid
智能电网中效率与安全的权衡
  • DOI:
    10.1109/cdc.2012.6425909
  • 发表时间:
    2012
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Yara Abdallah;Zizhan Zheng;N. Shroff;H. E. Gamal
  • 通讯作者:
    H. E. Gamal

Zizhan Zheng的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Zizhan Zheng', 18)}}的其他基金

CAREER: Learning to Secure Cooperative Multi-Agent Learning Systems: Advanced Attacks and Robust Defenses
职业:学习保护协作多代理学习系统:高级攻击和强大的防御
  • 批准号:
    2146548
  • 财政年份:
    2022
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Continuing Grant
NeTS: Small: Collaborative Research: Reliable 60 GHz WLANs through Coordination: Measurement, Modeling and Optimization
NeTS:小型:协作研究:通过协调实现可靠的 60 GHz WLAN:测量、建模和优化
  • 批准号:
    1816943
  • 财政年份:
    2018
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Standard Grant

相似国自然基金

基于NRF2调控KPNB1促进PD-L1核转位介导非小细胞肺癌免疫治疗耐药的机制研究
  • 批准号:
    82303969
  • 批准年份:
    2023
  • 资助金额:
    30 万元
  • 项目类别:
    青年科学基金项目
小胶质细胞调控外侧隔核-腹侧被盖区神经环路介导社交奖赏障碍的机制研究
  • 批准号:
    82304474
  • 批准年份:
    2023
  • 资助金额:
    30 万元
  • 项目类别:
    青年科学基金项目
肾去交感神经术促进下丘脑室旁核小胶质细胞M2型极化减轻心衰损伤的机制研究
  • 批准号:
    82370387
  • 批准年份:
    2023
  • 资助金额:
    49 万元
  • 项目类别:
    面上项目
空间邻近标记技术研究莱茵衣藻蛋白核小管与碳浓缩机制的潜在关系
  • 批准号:
    32300220
  • 批准年份:
    2023
  • 资助金额:
    30 万元
  • 项目类别:
    青年科学基金项目
polyG蛋白聚集体诱导小胶质细胞活化在神经元核内包涵体病中的作用及机制研究
  • 批准号:
    82301603
  • 批准年份:
    2023
  • 资助金额:
    30 万元
  • 项目类别:
    青年科学基金项目

相似海外基金

SaTC: CORE: Small: An evaluation framework and methodology to streamline Hardware Performance Counters as the next-generation malware detection system
SaTC:核心:小型:简化硬件性能计数器作为下一代恶意软件检测系统的评估框架和方法
  • 批准号:
    2327427
  • 财政年份:
    2024
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338301
  • 财政年份:
    2024
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338302
  • 财政年份:
    2024
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Continuing Grant
SaTC: CORE: Small: NSF-DST: Understanding Network Structure and Communication for Supporting Information Authenticity
SaTC:核心:小型:NSF-DST:了解支持信息真实性的网络结构和通信
  • 批准号:
    2343387
  • 财政年份:
    2024
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Standard Grant
NSF-NSERC: SaTC: CORE: Small: Managing Risks of AI-generated Code in the Software Supply Chain
NSF-NSERC:SaTC:核心:小型:管理软件供应链中人工智能生成代码的风险
  • 批准号:
    2341206
  • 财政年份:
    2024
  • 资助金额:
    $ 24.42万
  • 项目类别:
    Standard Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了