False targets efficiency in defense strategy

doi:10.1016/j.ejor.2007.11.060

European Journal of Operational Research

Volume 194, Issue 1, 1 April 2009, Pages 155-162

https://doi.org/10.1016/j.ejor.2007.11.060 Get rights and content

Abstract

The paper analyzes the efficiency of deploying false targets as part of a defense strategy. It is assumed that the defender has a single object that can be destroyed by the attacker. The defender distributes its resource between deploying false targets and protecting the object from outside attacks. The attacker cannot distinguish the false targets from the defended object (genuine target). Therefore the attacker has no preferences for attacking one target rather than another target. The defender decides how many false targets to deploy whereas the attacker decides how many targets to attack. The article assumes that both the defender and attacker have complete information and full rationality. The optimal number of false targets and the attacked targets are obtained for the case of fixed and variable resources of the defender and the attacker as solutions of a non-cooperative game between the two agents.

Introduction

Determining risk reduction strategies applying reliability theory have usually assumed a static external threat.¹ Bier and Abhichandani, 2002, Bier et al., 2005 assume that the defender minimizes the success probability and expected damage of an attack.² Levitin (2007) determines the expected damage for any distribution of the attacker’s effort and any separation and distribution of the defender’s effort. The September 11, 2001 attack illustrated that major threats today involve strategic attackers. The defender and attacker of a system of components are fully strategic optimizing agents.³

This paper considers the situation where the defender has a single object that can be destroyed by the attacker. To reduce the attack probability the defender can deploy false targets. False targets are effective only if the attacker cannot distinguish them from the defended object (genuine target) with 100% confidence. In this paper, we consider the case where the attacker has no preferences for attacking one target rather than another target. If false targets are deployed, the attacker can attack each one of these targets or the genuine target or any group of targets with equal intensity. The attacker can decide to attack a subset of the targets. The article assumes that both the defender and attacker have complete information about the structure of the game, the strategy sets (which specify the ranges for the free choice variables), and all parameters, and full rationality.

False targets have to the authors’ knowledge not been discussed within the realm of a contest between a defender and an attacker. Sometimes the word decoy is used, and within computer security the term honeypot is common. Let us consider a few real-world examples to help to motivate the paper. The objective of a false target is to distract or conceal something that someone else may search for (to gain access to, control, destroy, etc.). A false target in war may be a wooden fake tank designed to be mistaken to be real by the crew of an attacking plane. The design of the false target may be adjusted to the technology of the attacker, which e.g. may be an automatic guided missile. Another example arises if it proves difficult to camouflage something of value, e.g. a power station, e.g. in an open landscape. An alternative to camouflage is to spread multiple entities with the same appearance as the genuine target, but with empty content, e.g. empty buildings of concrete which cannot be detected as fake unless when broken into.

Section 2 presents the model. Section 3 assumes fixed attacker and defender resources. Section 4 considers variable attacker and defender resources. Section 5 concludes.

Section snippets

The model

In the case with fixed resources r and R, the defender’s free choice variable is the number N of false targets, and the attacker’s free choice variable is the number Q of targets to attack. In the case with variable resources, the defender’s free choice variables are N and r, while the attacker’s free choice variable are Q and R. The discrete quantities Q and N are treated as continuous variables. If N false targets are deployed, the total number of targets is N + 1. The destruction of any number

Fixed attacker and defender resources

This model is relevant in the cases when both the attacker and the defender have non-zero resources that are not enough to reach the equilibrium strategies in the game with variable resources (considered in the next section), which takes place when the attack and the defense costs are much lower than the expected damage.

The total attacker’s resource is R. The cost of the attacker’s effort unit is A. Therefore the total effort the attacker can make is R/A. If the attacker decides to attack Q out

Variable attacker and defender resources

The previous section assumed that the defender and attacker have to use their specified resources r and R in their entirety. This can be realistic when agents have specific budgets which cannot be exceeded (e.g. through borrowing), and when there are incentives to use the entire budget (e.g. because it gets lost when not used or because the expected damage caused by the attack is much greater than the budgets). But, agents can sometimes adjust their resources more flexibly. This section assumes

Conclusion

In a situation where the defender has a single object that can be destroyed by the attacker and deploys false targets to reduce the attack probability, the optimal number of false targets in general depends on the resources available to the attacker and the defender, on the false target cost and on the contest intensity. False targets are effective only if the attacker cannot distinguish them from the defended object (genuine target).

The optimal number of false targets is determined in this

References (21)

V.M. Bier et al.
Protection of simple series and parallel systems with components of different values
Reliability Engineering and System Safety
(2005)
K. Hausken
Income, interdependence, and substitution effects affecting incentives for security investment
Journal of Accounting and Public Policy
(2006)
K. Hausken
Strategic defense and attack for series and parallel reliability systems
European Journal of Operational Research
(2008)
G. Levitin
Optimal multilevel protection in series-parallel systems
Reliability Engineering and System Safety
(2003)
G. Levitin
Optimal allocation of multi-state elements in linear consecutively connected systems with vulnerable nodes
European Journal of Operational Research
(2003)
G. Levitin et al.
Optimal separation of elements in vulnerable multi-state systems
Reliability Engineering and System Safety
(2001)
G. Levitin et al.
Optimizing survivability of vulnerable series-parallel multi-state systems
Reliability Engineering and System Safety
(2003)
G. Levitin et al.
Optimizing survivability of multi-state systems with multi-level protection by multi-processor genetic algorithm
Reliability Engineering and System Safety
(2003)
N. Azaiez et al.
Optimal resource allocation for security in reliability systems
European Journal of Operational Research
(2007)
V.M. Bier et al.
Optimal allocation of resources for defense of simple series and parallel systems from determined adversaries

There are more references available in the full text version of this article.

Cited by (66)

A review of attacker-defender games: Current state and paths forward
2024, European Journal of Operational Research
In this article, we review the literature which proposes attacker-defender games to protect against strategic adversarial threats. More specifically, we follow the systematic literature review methodology to collect and review 127 journal articles that have been published over the past 15 years. We start by briefly discussing the common application areas that are addressed in the literature, although our focus in this review lies heavily in the approaches that have been adopted to model and solve attacker-defender games. In studying these approaches, we begin by analyzing the following features of the proposed game formulations: the sequence of moves, number of players, nature of decision variables and objective functions, and time horizons. We then analyze the common assumptions of perfect rationality, risk neutrality, and complete information that are enforced within the majority of the articles, and report on state-of-the-art research which has begun relaxing these assumptions. We find that relaxing these assumptions presents further challenges, such as enforcing new assumptions regarding how uncertainties are modeled, and issues with intractability when models are reformulated to account for considerations such as risk preferences. Finally, we examine the methods that have been adopted to solve attacker-defender games. We find that the majority of the articles obtain closed-form solutions to their models, while there are also many articles that developed novel solution algorithms and heuristics. Upon synthesizing and analyzing the literature, we expose open questions in the field, and present promising future research directions that can advance current knowledge.
Fifty Years of Operations Research in Defense
2024, European Journal of Operational Research
The OR (Operations Research) in defense literature is reviewed. Various OR methodologies are outlined, e.g. decision theory, game theory, mergers of differential equations and game theory, and adversarial risk analysis. What is being defended is specified, warfare is described, and common tools and characteristics of the literature are illustrated. The literature is reviewed by classifying it as follows. The system structure of what is being defended is classified into single target, series systems, parallel systems, series-parallel systems, networks, multiple targets, interdependent systems, degraded systems, and other types of systems. Defense strategies are classified into protection, redundancy, false targets, separation of system targets, individual versus overarching defense and, special versus general protection and attack, proactive versus reactive defense, and defending with negative or positive incentives. Attack strategies are classified into attack against a single target, attack against multiple targets, consecutive attacks, and random attack. Defense and attack circumstances are classified into combination of intentional and unintentional impacts, incomplete information, information sharing, cyber war, variable resources, expendable versus nonexpendable resources, multiple defenders, multiple attackers, and multiple defenders and multiple attackers. Reflections are provided on open problems, gaps between the current state of research and real world needs, and prospective research directions.
Cyber deterrence with imperfect attribution and unverifiable signaling
2023, European Journal of Operational Research
Motivated by the asymmetric information inherent to cyberwarfare, we examine a game of deterrence between an attacker and a defender in which the defender can signal its retaliatory capability but can only imperfectly attribute an attack. We show that there are equilibria in which the defender sends noisy signals to increase its expected payoff. In some equilibria, the defender can use signaling to deter an attacker and increase its payoff. In a different and somewhat counter-intuitive equilibrium, the defender can increase its expected payoff through signaling by luring the attacker to attack more.
Improving defensive air battle management by solving a stochastic dynamic assignment problem via approximate dynamic programming
2023, European Journal of Operational Research
Military air battle managers face several challenges when directing operations during quickly evolving combat scenarios. These scenarios require rapid assignment decisions to engage moving targets having dynamic flight paths. In defensive operations, the success of a sequence of air battle management decisions is reflected by the friendly force’s ability to maintain air superiority and defend friendly assets. We develop a Markov decision process (MDP) model of a stochastic dynamic assignment problem, named the Air Battle Management Problem (ABMP), wherein a set of unmanned combat aerial vehicles (UCAV) must defend an asset from cruise missiles arriving stochastically over time. Attaining an exact solution using traditional dynamic programming techniques is computationally intractable. Hence, we utilize an approximate dynamic programming (ADP) technique known as approximate policy iteration with least squares temporal differences (API-LSTD) learning to find high-quality solutions to the ABMP. We create a simulation environment in conjunction with a generic yet representative combat scenario to illustrate how the ADP solution compares in quality to a reasonable, closest-intercept benchmark policy. Our API-LSTD policy improves mean success rate by 2.8% compared to the benchmark policy and offers an 81.7% increase in the frequency with which the policy performs perfectly. Moreover, we find the increased success rate of the ADP policy is, on average, equivalent to the success rate attained by the benchmark policy when using a 20% faster UCAV. These results inform military force management and defense acquisition decisions and aid in the development of more effective tactics, techniques, and procedures.
Time dependent network resource optimization in cyber–physical systems using game theory
2021, Computer Communications
The social and economic stability of a country is dependent on critical infrastructures (CIs) whose services range from financial to healthcare and power to transportation and communications. Most of these CIs are cyber–physical systems (CPSs), which integrate the network’s computational and communication capabilities to facilitate the monitoring and controlling of physical processes. Such systems are vulnerable to damage due to natural disasters, physical incidents, or cyber-attacks impacting the CPS organizations managing complex industrial control systems and data acquisition systems. When these CPSs are exposed to systemic cyber risks and cascaded network failures, network administrators need to recover from the compromise under limited resources. This is formulated as an attacker-defender game model to emulate the decision-making process in choosing an appropriate attack/defence mechanism in response to cybersecurity incidents using game theory. To further improve the assumptions made in the pure game-theoretic model, we relax the constraints on the rationality of the players, monetary payoff, and completeness of information by incorporating learning in games using reinforcement learning technique and compute the expected payoff using linguistic fuzzy variables.
Resource allocation among multiple targets for a defender-attacker game with false targets consideration
2021, Reliability Engineering and System Safety
Appropriate resource allocation among multiple targets plays a vital role in the defender-attacker game. Traditional methods seldom consider the optimal resource allocation with more than one strategy among multiple targets. Accordingly, we assume that the defender moves first, allocating resources in deploying different false targets and strengthening the genuine ones among multiple targets. The attacker moves after observing the defender's move, distributing resources in identifying false targets and then attacking the genuine ones concerning multiple targets. Each player aims to maximize their own overall expected utility given any of the other player's move. The optimal resource distribution between target intelligence/protection for the defender and target identification/attack efforts among multiple targets for the attacker is studied. We model and obtain analytical equilibrium results under various parameter settings. Our results show that increased intelligence (impact) contest intensities lead to lower (higher) attacker resources in intelligence (attack). Moreover, the zero-sum game where both players share the same preferences without additional payoff consideration results in the worst losses for the defender. The forgoing method offers an original way to approach the resource allocation problems in security defense fields.

View all citing articles on Scopus

View full text

Stochastics and StatisticsFalse targets efficiency in defense strategy

Abstract

Introduction

Section snippets

The model

Fixed attacker and defender resources

Variable attacker and defender resources

Conclusion

Reliability Engineering and System Safety

Journal of Accounting and Public Policy

European Journal of Operational Research

Reliability Engineering and System Safety

European Journal of Operational Research

Reliability Engineering and System Safety

Reliability Engineering and System Safety

Reliability Engineering and System Safety

Optimal resource allocation for security in reliability systems

European Journal of Operational Research

Optimal allocation of resources for defense of simple series and parallel systems from determined adversaries

Stochastics and Statistics
False targets efficiency in defense strategy