An Approach of Adaptive Cyber Deception for Active Cyber-attack Defense Method based on Deep Reinforcement Learning

RESEARCH CREW
13:09 17/04/2024

The diverse landscape of network models, including Software-Defined Networking (SDN), Cloud Computing (C2), and Internet of Things (IoT), is evolving to meet the demands of flexibility and performance. However, these environments face numerous security challenges due to cyber-attack complexity. Traditional defense mechanisms are no longer effective against modern attacks. Therefore, Defensive Deception(DD) is proposed as an active defense approach for deceiving attackers. Despite the optimized resource deployment of both Machine Learning (ML) and Deep Learning (DL), they necessitate the usage of pre-existing datasets that have been labeled. Our paper combines Deep Reinforcement Learning (DRL) and SDN technology to establish a novel strategic deception deployment method. This combination creates a powerful security solution that generates deceptive targets and resources to attract attackers, as a result, it provides improved visibility, threat detection, response capabilities, and threat intelligence. Our experiments are implemented on a simulated SDN-based network. The experimental results show that our approach gives significant effectiveness for deception resource allocation compared to random strategies.

TIN LIÊN QUAN
Despite the dominance of Transformer-based models in software vulnerability detection, the extent to which their learned security logic generalizes across different programming languages remains a critical open question. To address this, we propose a comprehensive evaluation framework organized into three phases spanning five distinct experimental scenarios, aiming to rigorously dissect...
Security testing of REST APIs remains difficult because real-world OpenAPI specifications are often incomplete, many security flaws are inherently stateful, and prevailing stateful fuzzers still optimize primarily for structural exploration rather than OWASP-aligned risk categories. Based on this gap, this paper presents APIGFUZZ, a graph-driven, OWASP-aware black-box REST API fuzzing...