Cyber-Awareness and Games of Incomplete Information

Similar documents
Cyber Security Games with Asymmetric Information

Asymmetric Information Security Games 1/43

MS&E 246: Lecture 12 Static games of incomplete information. Ramesh Johari

A Polynomial-time Nash Equilibrium Algorithm for Repeated Games

Game Theory. Monika Köppl-Turyna. Winter 2017/2018. Institute for Analytical Economics Vienna University of Economics and Business

Dynamic Games with Asymmetric Information: Common Information Based Perfect Bayesian Equilibria and Sequential Decomposition

Learning to Coordinate Efficiently: A Model-based Approach

First Prev Next Last Go Back Full Screen Close Quit. Game Theory. Giorgio Fagiolo

1 Equilibrium Comparisons

Equilibrium Refinements

EC319 Economic Theory and Its Applications, Part II: Lecture 2

MS&E 246: Lecture 17 Network routing. Ramesh Johari

Computing Equilibria of Repeated And Dynamic Games

Exponential Moving Average Based Multiagent Reinforcement Learning Algorithms

Learning Equilibrium as a Generalization of Learning to Optimize

Distributed Learning based on Entropy-Driven Game Dynamics

Recap Social Choice Fun Game Voting Paradoxes Properties. Social Choice. Lecture 11. Social Choice Lecture 11, Slide 1

Simple Counter-terrorism Decision

On the Informed Principal Model with Common Values

BELIEFS & EVOLUTIONARY GAME THEORY

For general queries, contact

Coordinating over Signals

Long-Run versus Short-Run Player

Fictitious Self-Play in Extensive-Form Games

Lecture Note II-3 Static Games of Incomplete Information. Games of incomplete information. Cournot Competition under Asymmetric Information (cont )

Econ 618: Correlated Equilibrium

A Stochastic Framework for Quantitative Analysis of Attack-Defense Trees

Principal-Agent Games - Equilibria under Asymmetric Information -

Game Theory, Evolutionary Dynamics, and Multi-Agent Learning. Prof. Nicola Gatti

Solving Zero-Sum Extensive-Form Games. Branislav Bošanský AE4M36MAS, Fall 2013, Lecture 6

The Multi-Arm Bandit Framework

Notes on Coursera s Game Theory

arxiv: v2 [cs.cr] 21 May 2018

Institute of Electrical and Electronics Engineers (IEEE) 53rd IEEE Conference on Decision and Control

Finding Optimal Strategies for Influencing Social Networks in Two Player Games. MAJ Nick Howard, USMA Dr. Steve Kolitz, Draper Labs Itai Ashlagi, MIT

Small Sample of Related Literature

On Reputation with Imperfect Monitoring

Game Theoretic Learning in Distributed Control

Robust Predictions in Games with Incomplete Information

Title: The Castle on the Hill. Author: David K. Levine. Department of Economics UCLA. Los Angeles, CA phone/fax

EC319 Economic Theory and Its Applications, Part II: Lecture 7

: Cryptography and Game Theory Ran Canetti and Alon Rosen. Lecture 8

Cyclic Equilibria in Markov Games

Higher Order Beliefs in Dynamic Environments

Lecture 1. Evolution of Market Concentration

Are Obstinacy and Threat of Leaving the Bargaining Table Wise Tactics in Negotiations?

Static Model of Decision-making over the Set of Coalitional Partitions

Efficient Sensor Network Planning Method. Using Approximate Potential Game

Economics 209B Behavioral / Experimental Game Theory (Spring 2008) Lecture 3: Equilibrium refinements and selection

Correlated Equilibrium in Games with Incomplete Information

When to Ask for an Update: Timing in Strategic Communication

Bayes Correlated Equilibrium and Comparing Information Structures

Introduction to Game Theory

When to Ask for an Update: Timing in Strategic Communication. National University of Singapore June 5, 2018

Informed Principal in Private-Value Environments

Near-Potential Games: Geometry and Dynamics

Epistemic Conditions for the Failure of Nash Equilibrium

Introduction to game theory LECTURE 1

Game Theory: Spring 2017

Detection and Mitigation of Cyber-Attacks Using Game Theory and Learning

Game Theory. Wolfgang Frimmel. Perfect Bayesian Equilibrium

Connections Between Cooperative Control and Potential Games Illustrated on the Consensus Problem

A remark on discontinuous games with asymmetric information and ambiguity

MS&E 246: Lecture 18 Network routing. Ramesh Johari

Game Theory and its Applications to Networks - Part I: Strict Competition

Exponential Moving Average Based Multiagent Reinforcement Learning Algorithms

Bayesian Games and Mechanism Design Definition of Bayes Equilibrium

Political Economy of Institutions and Development: Problem Set 1. Due Date: Thursday, February 23, in class.

Preference Elicitation for Sequential Decision Problems

Mechanism Design: Implementation. Game Theory Course: Jackson, Leyton-Brown & Shoham

Basics of Game Theory

Solving Extensive Form Games

4: Dynamic games. Concordia February 6, 2017

A Game Theoretic Investigation of Deception in Network Security

The Ecology of Defensive Medicine and Malpractice Litigation

Bargaining, Contracts, and Theories of the Firm. Dr. Margaret Meyer Nuffield College

MS&E 246: Lecture 4 Mixed strategies. Ramesh Johari January 18, 2007

Static Information Design

A Game-Theoretical Approach for Finding Optimal Strategies in an Intruder Classification Game

Selecting Efficient Correlated Equilibria Through Distributed Learning. Jason R. Marden

Dynamic stochastic game and macroeconomic equilibrium

Online Appendices for Large Matching Markets: Risk, Unraveling, and Conflation

Algorithmic Game Theory and Applications. Lecture 4: 2-player zero-sum games, and the Minimax Theorem

Utility Design for Distributed Engineering Systems

Epsilon Ex Post Implementation

3.3.3 Illustration: Infinitely repeated Cournot duopoly.

Influencing Social Evolutionary Dynamics

Recap Social Choice Functions Fun Game Mechanism Design. Mechanism Design. Lecture 13. Mechanism Design Lecture 13, Slide 1

Theory Field Examination Game Theory (209A) Jan Question 1 (duopoly games with imperfect information)

Robust Learning Equilibrium

Module 8: Multi-Agent Models of Moral Hazard

Refinements - change set of equilibria to find "better" set of equilibria by eliminating some that are less plausible

Deceptive Advertising with Rational Buyers

Persuading Skeptics and Reaffirming Believers

Near-Potential Games: Geometry and Dynamics

UC Berkeley Haas School of Business Game Theory (EMBA 296 & EWMBA 211) Summer Social learning and bargaining (axiomatic approach)

Opting Out in a War of Attrition. Abstract

On Decentralized Incentive Compatible Mechanisms for Partially Informed Environments

Extensive Form Games I

ECO 199 GAMES OF STRATEGY Spring Term 2004 Precepts Week 7 March Questions GAMES WITH ASYMMETRIC INFORMATION QUESTIONS

Transcription:

Cyber-Awareness and Games of Incomplete Information Jeff S Shamma Georgia Institute of Technology ARO/MURI Annual Review August 23 24, 2010

Preview Game theoretic modeling formalisms Main issue: Information exploitation vs revelation 1

Example: Network monitoring Players & strategies: Administrator: {Monitor, Not Monitor} Attacker: {Attack, Not Attack} Preferences/utility function: where w = value of asset c f = cost of failed attack c a = cost to execute attack c m = cost to monitor Note: Not zero-sum M NM A c f c a, w c m w c a, 0 NA 0, w c m 0, w 2

Elements Players (actors, agents): P = {1, 2,..., p} Strategies (choices): Individual: Collective: Preferences, expressed as utility function: s i S i (s 1,..., s p ) S = S 1... S p u i : S R s i s u i (s) u i (s ) Essential feature: Preferences over collective strategies: max s i S i u i (s i ) vs max s i S i u i (s i, s i ) 3

Example: Network monitoring 1 Setup: External world (E), Web server (W), File server (F), Workstation (N) States: Software: ftpd, httpd, nfsd, process, sniffer, virus Flags: User account compromised & data compromised 4 Traffic levels per edge Number of states billion Actions-per-state Attacker: {Attack-httpd, Attack-ftpd, Install-sniffer,...} Administrator: {Remove-account, Restart-ftpd, Install-sniffer-detector,...} 1 Source: Lye & Wing, Game strategies in network security, Int J Inf Secur, 2005. 4

Dynamic network monitoring, cont Dynamics: State/action dependent transition probabilities Transition dependent rewards/costs Stochastic Markov game: Stategy = state dependent action rules Preferences = Expected future discounted rewards/costs Compare: M NM A c f c a, w c m w c a, 0 NA 0, w c m 0, w 5

Solution concepts: Descriptive & prescriptive Case I: The strategy profile s is a Nash equilibrium if for every player i, u i (s ) = u i (s i, s i) u i (s i, s i) Idea: No player has a unilateral incentive to change action Case II: The strategy profile s i is a (weakly) dominant strategy if for all s i: u i (s i, s i ) u i (s i, s i ) Idea: s i is always optimal, e.g., A 0, 0 1, 1 B 0, 0 1, 1 Case III: The strategy profile s i is a security strategy if Idea: Select s sec i s sec i = arg max s i to maximize guaranteed utility min s i u i (s i, s i ) 6

NE informational requirements Introduce mixed strategies Pr [A] = p & Pr [NA] = 1 p Pr [M] = q & Pr [NM] = 1 q M NM A c f c a, w c m w c a, 0 NA 0, w c m 0, w Restate preferences as expected utility NE: Solve (p, q) Implication: w c m = (1 p) w q ( c f c a ) + (1 q) (w c a ) = 0 Specific probabilities depend on knowledge of environment (opponent s utilities)...unlike security strategies 7

Uncertain environments: Static case Example 2 : M NM A c f c a, w c m w c a, 0 NA 0, w c m 0, w Malicious System user knows own type M NA 0, w c m NA 0, w c m Administrator receives signals (e.g,. {G, Y, R}) and forms beliefs G Pr [Malicious = 0.05] Y Pr [Malicious = 0.25] R Pr [Malicious = 0.8] Normal Can introduce uncertainty to either or both players (e.g., honey pot or not ) NM 0, w 0, w 2 Source: Liu et al., ayesian game approach for intrusion detection in wireless ad hoc networks, GameNets, 2006. 8

Uncertain environments: Dynamic case Setup: Multiple states Action dependent state transition probabilities Each player has correlated observations about state Strategy: Mapping from private history to actions Uncertainty sources & implications: State values Exploitation vs revelation Opponent actions Beliefs (of beliefs...) 9

Special case: Repeated zero-sum game Setup: A m 11 m 12 B m 21 m 22 A m 11 m 12 B m 21 m 22 A m 11 m 12... B m 21 m 22 Players repeatedly play same game over sequential stages Row player = maximizer; Col player = minimizer Player s observe opponent actions (perfect monitoring) Strategy = mapping from past observations to future action probabilities Utility = [averaged,discounted][finite,infinite] sum of stage payoffs Issues: Asymmetric information Computation 10

Example Setup: A 0, 0 1, 1 B 0, 0 1, 1 Administrator (row) knows state (allowed behavior) Attacker (col) has probabilistic beliefs over state α A 1, 1 0, 0 B 1, 1 0, 0 Note: Row has state-dependent dominant strategies Nash Equilibrium Attacker s belief (common knowledge): ( 0.6 0.4 ) Administrator does not use dominant strategy: (oblivious to col) day α β ( ) ( ) 0 0.62 0.38 0.32 0.68 1 β 11

Example, cont A 0, 0 1, 1 B 0, 0 1, 1 Day 1: Plays according to prior beliefs: col(1) = A α A 1, 1 0, 0 B 1, 1 0, 0 Day 2: Based on Admin strategy, attacker builds posterior beliefs row(1) posterior col(2) ( ) A ( 0.75 0.25 ) A B 0.45 0.55 B β 12

Non-revealing strategies Issue: Growth of beliefs for fixed prior: (#actions) (#stages) Non-revealing strategy: Informed player uses state-independent probabilities Consequence: Constant beliefs by uniformed player Ease of computation Suboptimal Question: When are non-revealing strategies optimal? Setup: State-dependent payoff matrices M 1, M 2,..., M K Prior belief p 1, p 2,..., p K 13

Non-revealing strategies, cont One-shot game values: v 1 = max min ( x 1 x 2... x K) T x 1,x 2,...,x K y p 1 M 1 p 2 M 2. y p K M K v NR = max min x T NR (p 1 M 1 + p 2 M 2 +... + p K M K ) y x NR y Claim: A non-revealing strategy is if optimal if and only if v 1 = v NR If so, the optimal strategy is stationary (i.e., stage independent). 14

Non-revelation example Setup: A 0 1 B 0 1/2 Administrator configures spare server for A or B Attacker targets A or B Utility is quality of service State is legitimate user activity with prior ( 0.2 0.8 ) α A 1/2 0 B 1 0 β Utility of dominant strategy: 0.2 #stages 15

Non-revelation example, cont A 0 1 B 0 1/2 Non-revelation one-shot game: ( ) 0 1 0.2 + 0.8 0 1/2 Strategies: Administrator: Always A Attacker: Always B Payoff: α A 1/2 0 B 1 0 ( ) 1/2 0 1 0 = β ( ) 0.4 0.2 0.8 0.1 0.2 vs 0.2 #stages 16

Future directions Broader classes of computable strategies ( almost non-revealing) Robustness to unknown landscapes (prior beliefs, non-zero-sum payoffs) Role of adaptation/learning Imperfect monitoring 17

2024 © sciencedocbox.com Privacy Policy | Terms of Service | Feedback