AI Bibliography

Traditional cyber security techniques have led to an asymmetric disadvantage for defenders. The defender must detect all possible threats at all times from all attackers and defend all systems against all possible exploitation. In con- trast, an attacker needs only to find a single path to the defender’s critical information. In this article, we discuss how this asymmetry can be rebalanced using cyber deception to change the attacker’s perception of the network environment, and lead attackers to false beliefs about which systems contain critical information or are critical to a defender’s computing infrastructure. We introduce game theory concepts and models to represent and reason over the use of cyber deception by the defender and the effect it has on attacker percep- tion. Finally, we discuss techniques for combining artificial intelligence algo- rithms with game theory models to esti- mate hidden states of the attacker using feedback through payoffs to learn how best to defend the system using cyber deception. It is our opinion that adap- tive cyber deception is a necessary com- ponent of future information systems and networks. The techniques we pres- ent can simultaneously decrease the risks and impacts suffered by defenders and dramatically increase the costs and risks of detection for attackers. Such techniques are likely to play a pivotal role in defending national and interna- tional security concerns.