When Hackers Err -- The Impacts of False Positives on Information Security Games

PDF Version Also Available for Download.

Description

This article presents the first comprehensive analytical model that incorporates the false positives both from the perspective of the attacker as well as of the system defender.

Physical Description

46 p.

Creation Information

Mai, Bin & Kulkarni, Shailesh S. June 2018.

Context

This article is part of the collection entitled: UNT Scholarly Works and was provided by UNT College of Business to Digital Library, a digital repository hosted by the UNT Libraries. It has been viewed 83 times . More information about this article can be viewed below.

Who

People and organizations associated with either the creation of this article or its content.

Authors

Publisher

Provided By

UNT College of Business

One of the largest business schools in the nation, UNT College of Business strives to prepare global business leaders and scholars in an intellectually stimulating and engaging community through preeminent teaching, research, and service. The college offers degree programs at the bachelor's, master's, and doctoral levels, along with certificate programs in a variety of disciplines.

Contact Us

What

Descriptive information to help identify this article. Follow the links below to find similar items on the Digital Library.

Description

This article presents the first comprehensive analytical model that incorporates the false positives both from the perspective of the attacker as well as of the system defender.

Physical Description

46 p.

Notes

Abstract: False positive rates and their impacts have been a focal point for information security research. However, most of this research investigates false positives exclusively from the system defender’s perspective, while in reality an attacker also faces the classification decision in identifying feasible targets and the consequences of false positive rates. In this paper, we present the first comprehensive analytical model that incorporates the false positives both from the perspective of the attacker as well as of the system defender. Our results show that such false positives from the attacker’s perspective have a significant impact on the attacker’s decision making for an attack, as well as the optimal protection strategy for the defender. Our results help to shed new light on a wide range of diverse information security phenomena such as spam emails, the Nigerian scams, and the design of Honeypot as a security mechanism. In addition, we show how an attacker’s mis-estimation of certain parameter would affect the defender’s strategy, and how the heterogeneity of the systems impacts the defender’s strategy to manipulate the attacker’s possible mis-estimation.

Source

  • Decision Analysis, 2018. Cantonsville, MD: INFORMS

Language

Item Type

Publication Information

  • Publication Title: Decision Analysis
  • Volume: 15
  • Issue: 2
  • Peer Reviewed: Yes

Collections

This article is part of the following collection of related materials.

UNT Scholarly Works

Materials from the UNT community's research, creative, and scholarly activities and UNT's Open Access Repository. Access to some items in this collection may be restricted.

What responsibilities do I have when using this article?

When

Dates and time periods associated with this article.

Creation Date

  • June 2018

Added to The UNT Digital Library

  • Feb. 1, 2018, 6:37 p.m.

Usage Statistics

When was this article last used?

Yesterday: 0
Past 30 days: 0
Total Uses: 83

Interact With This Article

Here are some suggestions for what to do next.

Start Reading

PDF Version Also Available for Download.

International Image Interoperability Framework

IIF Logo

We support the IIIF Presentation API

Mai, Bin & Kulkarni, Shailesh S. When Hackers Err -- The Impacts of False Positives on Information Security Games, article, June 2018; Cantonsville, Maryland. (digital.library.unt.edu/ark:/67531/metadc1065435/: accessed August 21, 2018), University of North Texas Libraries, Digital Library, digital.library.unt.edu; crediting UNT College of Business.