English
Related papers

Related papers: Defender Policy Evaluation and Resource Allocation…

200 papers

Cybersecurity is a big challenge as hackers are always trying to find new methods to attack and exploit system vulnerabilities. Cybersecurity threats and risks have increased in recent years, due to the increasing number of devices and…

Cryptography and Security · Computer Science 2024-07-30 Ihab Mohamed , Hesham A. Hefny , Nagy R. Darwish

MITRE ATT&CK is a cybersecurity knowledge base that organizes threat actor and cyber-attack information into a set of tactics describing the reasons and goals threat actors have for carrying out attacks, with each tactic having a set of…

A model of strategy formulation is used to study how an adaptive attacker learns to overcome a moving target cyber defense. The attacker-defender interaction is modeled as a game in which a defender deploys a temporal platform migration…

Cryptography and Security · Computer Science 2014-08-19 M. L. Winterrose , K. M. Carter , N. Wagner , W. W. Streilein

This paper introduces a novel complexity-informed approach to cybersecurity management, addressing the challenges found within complex cyber defences. We adapt and extend the complexity theory to cybersecurity and develop a quantitative…

Cryptography and Security · Computer Science 2025-01-28 Lampis Alevizos

This paper studies the problem of multi-step manipulative attacks in Stackelberg security games, in which a clever attacker attempts to orchestrate its attacks over multiple time steps to mislead the defender's learning of the attacker's…

Artificial Intelligence · Computer Science 2022-03-02 Thanh H. Nguyen , Arunesh Sinha

The rapid expansion of Internet use has increased system exposure to cyber threats, with advanced persistent threats (APTs) being especially challenging due to their stealth, prolonged duration, and multi-stage attacks targeting high-value…

Cryptography and Security · Computer Science 2026-03-11 Willie Kouam , Stefan Rass

Effective risk management in cybersecurity requires a thorough understanding of the interplay between attacker capabilities and defense strategies. Attack-Defense Trees (ADTs) are a commonly used methodology for representing this interplay;…

Cryptography and Security · Computer Science 2025-04-18 Danut-Valentin Copae , Reza Soltani , Milan Lopuhaä-Zwakenberg

Stealthy attacks are a major cyber-security threat. In practice, both attackers and defenders have resource constraints that could limit their capabilities. Hence, to develop robust defense strategies, a promising approach is to utilize…

Computer Science and Game Theory · Computer Science 2019-10-22 Ming Zhang , Zizhan Zheng , Ness B. Shroff

We develop an analytical Stackelberg game framework for optimal resource allocation in a sequential attacker--defender setting with a finite set of assets and probabilistic attacks. The defender commits to a mixed protection strategy, after…

Computer Science and Game Theory · Computer Science 2025-12-22 Azhar Iqbal , James M. Chappell , Derek Abbott

Resource allocation is the process of optimizing the rare resources. In the area of security, how to allocate limited resources to protect a massive number of targets is especially challenging. This paper addresses this resource allocation…

Computer Science and Game Theory · Computer Science 2019-02-26 Xu Liu , Xiaoqiang Di , Jinqing Li , Huan Wang , Jianping Zhao , Huamin Yang , Ligang Cong

We focus on adversarial patrolling games on arbitrary graphs, where the Defender can control a mobile resource, the targets are alarmed by an alarm system, and the Attacker can observe the actions of the mobile resource of the Defender and…

Artificial Intelligence · Computer Science 2018-06-20 Giuseppe De Nittis , Nicola Gatti

Moving Target Defense (MTD) has emerged as a proactive and dynamic framework to counteract evolving cyber threats. Traditional MTD approaches often rely on assumptions about the attackers knowledge and behavior. However, real-world…

Cryptography and Security · Computer Science 2024-08-20 Megha Bose , Praveen Paruchuri , Akshat Kumar

MITRE ATT&CK is a comprehensive framework of adversary tactics, techniques and procedures based on real-world observations. It has been used as a foundation for threat modelling in different sectors, such as government, academia and…

Cryptography and Security · Computer Science 2023-08-29 Bader Al-Sada , Alireza Sadighian , Gabriele Oligeri

Cyber deception allows compensating the late response of defenders countermeasures to the ever evolving tactics, techniques, and procedures (TTPs) of attackers. This proactive defense strategy employs decoys resembling legitimate system…

Cryptography and Security · Computer Science 2024-10-17 Marco Zambianco , Claudio Facchinetti , Domenico Siracusa

The MITRE ATT&CK framework is a widely adopted tool for enhancing cybersecurity, supporting threat intelligence, incident response, attack modeling, and vulnerability prioritization. This paper synthesizes research on its application across…

Cryptography and Security · Computer Science 2025-02-18 Yuning Jiang , Qiaoran Meng , Feiyang Shang , Nay Oo , Le Thi Hong Minh , Hoon Wei Lim , Biplab Sikdar

Advanced persistent threats (APTs) are stealthy attacks which make use of social engineering and deception to give adversaries insider access to networked systems. Against APTs, active defense technologies aim to create and exploit…

Cryptography and Security · Computer Science 2019-01-24 Jeffrey Pawlick , Thi Thu Hang Nguyen , Edward Colbert , Quanyan Zhu

The MITRE Adversarial Tactics, Techniques and Common Knowledge (MITRE ATT&CK) Attack Technique to Proactive Software Supply Chain Risk Management Framework (P-SSCRM) Task mapping described in this document helps software organizations to…

Software Engineering · Computer Science 2025-07-25 Sivana Hamer , Jacob Bowen , Md Nazmul Haque , Chris Madden , Laurie Williams

Engineering more secure software has become a critical challenge in the cyber world. It is very important to develop methodologies, techniques, and tools for developing secure software. To develop secure software, software developers need…

Software Engineering · Computer Science 2023-02-14 Nicholas Lasky , Benjamin Hallis , Mounika Vanamala , Rushit Dave , Jim Seliya

This paper investigates backdoor attack planning in stochastic control systems modeled as Markov Decision Processes (MDPs). A backdoor attack involves an adversary deploying a policy that performs well in the original MDP to pass testing,…

Systems and Control · Electrical Eng. & Systems 2026-04-27 Xinyi Wei , Shuo Han , Ahmed H. Hemida , Charles A. Kamhoua , Jie Fu

Industry standard frameworks are now widespread for labeling the high-level stages and granular actions of attacker and defender behavior in cyberspace. While these labels are used for atomic actions, and to some extent for sequences of…

Cryptography and Security · Computer Science 2023-07-21 Georgel Savin , Ammar Asseri , Josiah Dykstra , Jonathan Goohs , Anthony Melarano , William Casey
‹ Prev 1 2 3 10 Next ›