EAGER: Behavior-Based Incentive Mechanism Design for Crowd Defense against Phishing Attacks
EAGER:基于行为的激励机制设计,用于群体防御网络钓鱼攻击
基本信息
- 批准号:1720230
- 负责人:
- 金额:$ 30万
- 依托单位:
- 依托单位国家:美国
- 项目类别:Standard Grant
- 财政年份:2017
- 资助国家:美国
- 起止时间:2017-09-01 至 2022-08-31
- 项目状态:已结题
- 来源:
- 关键词:
项目摘要
This research is aimed at preventing harm from phishing attacks. Phishing attacks have been on the rise in the last few years with nearly 450,000 attacks and record estimated losses of over USD $5.9 billion just in the year 2013 alone. These attacks attempt to acquire personal information, such as username and passwords, through fraudulent emails. Phishing emails are becoming more targeted, using personal information about their intended victims, in an attempt to seem like authentic emails and improve the response rate to the attacks. If a large number of participants who receive a phishing email can respond to it strategically using fake or deceptive information, the attacker will be overwhelmed and misled by the number of responses, and thus making it more costly to locate the victim. In this way, vulnerable users who tend to fall victim to phishing scams will be hidden in a number of fake responses. The cooperative large-population behavior of the defenders can increase significantly the cost of attack, and hence reduce the economic incentives for the attacker to send phishing email. This type of defense mechanism is called crowd defense. This project will holistically explore the psychological, economic, behavioral, and technical aspects of crowd defense mechanism design.Crowd defense is a critical defense mechanism to reverse the asymmetric advantage from the attacker to the defender. The research aims to understand the psychological and economic factors in the behavior of crowd defenders, create essential behavioral game-theoretic design frameworks, and develop a proof-of-concept automated software system that enables users to coordinate and respond automatically to phishing. The analytical and design methodologies developed for anti-phishing crowd defense can be broadly applied to other security problems, such as distributed denial of service attacks (DDoS), advanced persistent threats (APT), and coordinated reconnaissance. The tools created in this project will be released as open-source for building a more collaborative and trustworthy cyberspace. The PIs are committed to public education through outreach activities that will further increase the participation of women and minorities as graduate and undergraduate students in the project.
这项研究旨在防止网络钓鱼攻击的危害。网络钓鱼攻击在过去几年中一直在上升,仅在2013年就发生了近45万次攻击,估计损失超过59亿美元。这些攻击试图通过欺诈性电子邮件获取用户名和密码等个人信息。网络钓鱼电子邮件越来越有针对性,使用有关其目标受害者的个人信息,试图看起来像真实的电子邮件,并提高对攻击的响应率。如果大量收到网络钓鱼电子邮件的参与者可以使用虚假或欺骗性信息对其进行策略性响应,攻击者将被大量响应所淹没和误导,从而使定位受害者的成本更高。通过这种方式,容易成为网络钓鱼诈骗受害者的脆弱用户将隐藏在许多虚假响应中。防御者的大群体合作行为可以显著增加攻击成本,从而减少攻击者发送钓鱼电子邮件的经济动机。这种防御机制被称为群体防御。本项目将从心理、经济、行为、技术等多个方面对群体防御机制的设计进行整体探讨。群体防御是一种重要的防御机制,可以扭转攻击者对防御者的不对称优势。该研究旨在了解人群防御者行为中的心理和经济因素,创建基本的行为博弈理论设计框架,并开发一个概念验证自动化软件系统,使用户能够自动协调和响应网络钓鱼。为反钓鱼群体防御开发的分析和设计方法可以广泛应用于其他安全问题,例如分布式拒绝服务攻击(DDoS),高级持续威胁(APT)和协调侦察。在这个项目中创建的工具将作为开源发布,以建立一个更具协作性和可信赖的网络空间。公共研究所致力于通过外联活动开展公共教育,这将进一步增加妇女和少数民族作为研究生和本科生参与该项目的人数。
项目成果
期刊论文数量(9)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
RADAMS: Resilient and adaptive alert and attention management strategy against Informational Denial-of-Service (IDoS) attacks
RADAMS:针对信息拒绝服务 (IDoS) 攻击的弹性和自适应警报和注意力管理策略
- DOI:10.1016/j.cose.2022.102844
- 发表时间:2022
- 期刊:
- 影响因子:5.6
- 作者:Huang, Linan;Zhu, Quanyan
- 通讯作者:Zhu, Quanyan
Modeling and Analysis of Leaky Deception Using Signaling Games With Evidence
- DOI:10.1109/tifs.2018.2886472
- 发表时间:2018-04
- 期刊:
- 影响因子:6.8
- 作者:J. Pawlick;Edward Colbert;Quanyan Zhu
- 通讯作者:J. Pawlick;Edward Colbert;Quanyan Zhu
A Game-theoretic Taxonomy and Survey of Defensive Deception for Cybersecurity and Privacy
- DOI:10.1145/3337772
- 发表时间:2019-09-01
- 期刊:
- 影响因子:16.6
- 作者:Pawlick, Jeffrey;Colbert, Edward;Zhu, Quanyan
- 通讯作者:Zhu, Quanyan
Sociocultural Orientation and Perceived Utility of Base Rates in Self and Social Judgments of Cyber Risk
网络风险的自我和社会判断中的社会文化取向和基本费率的感知效用
- DOI:10.54026/crpbs/1059
- 发表时间:2022
- 期刊:
- 影响因子:0
- 作者:Balcetis, Emily
- 通讯作者:Balcetis, Emily
Proactive Defense Against Physical Denial of Service Attacks Using Poisson Signaling Games
使用泊松信令游戏主动防御物理拒绝服务攻击
- DOI:
- 发表时间:2017
- 期刊:
- 影响因子:0
- 作者:Pawlick, J.;Zhu, Q.
- 通讯作者:Zhu, Q.
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
数据更新时间:{{ journalArticles.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ monograph.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ sciAawards.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ conferencePapers.updateTime }}
{{ item.title }}
- 作者:
{{ item.author }}
数据更新时间:{{ patent.updateTime }}
Quanyan Zhu其他文献
Deceptive Routing in Relay Networks
中继网络中的欺骗性路由
- DOI:
- 发表时间:
2012 - 期刊:
- 影响因子:0
- 作者:
Andrew Clark;Quanyan Zhu;R. Poovendran;T. Başar - 通讯作者:
T. Başar
Performance of Dynamic Secure Routing Game
动态安全路由博弈的性能
- DOI:
10.1007/978-3-319-93058-9_4 - 发表时间:
2018 - 期刊:
- 影响因子:0
- 作者:
J. Song;Quanyan Zhu - 通讯作者:
Quanyan Zhu
Factored markov game theory for secure interdependent infrastructure networks
用于安全相互依赖的基础设施网络的分解马尔可夫博弈论
- DOI:
- 发表时间:
2018 - 期刊:
- 影响因子:0
- 作者:
Linan Huang;Juntao Chen;Quanyan Zhu - 通讯作者:
Quanyan Zhu
Introduction to the special section on learning and security for multi-agent systems
多智能体系统的学习和安全专题介绍
- DOI:
- 发表时间:
2022 - 期刊:
- 影响因子:9.4
- 作者:
Quanyan Zhu;H. Ishii - 通讯作者:
H. Ishii
Hypothesis Testing Game for Cyber Deception
网络欺骗的假设检验游戏
- DOI:
- 发表时间:
2018 - 期刊:
- 影响因子:0
- 作者:
Tao Zhang;Quanyan Zhu - 通讯作者:
Quanyan Zhu
Quanyan Zhu的其他文献
{{
item.title }}
{{ item.translation_title }}
- DOI:
{{ item.doi }} - 发表时间:
{{ item.publish_year }} - 期刊:
- 影响因子:{{ item.factor }}
- 作者:
{{ item.authors }} - 通讯作者:
{{ item.author }}
{{ truncateString('Quanyan Zhu', 18)}}的其他基金
Conference: Workshop on LLM for Network Security
会议:网络安全法学硕士研讨会
- 批准号:
2409560 - 财政年份:2024
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
SaTC: Student Travel Support for 2020 Conference on Decision and Game Theory for Security (GameSec)
SaTC:2020 年安全决策与博弈论会议 (GameSec) 的学生旅行支持
- 批准号:
2023093 - 财政年份:2020
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
RAPID: Effective Resource Planning and Disbursement during the COVID-19 Pandemic
RAPID:COVID-19 大流行期间有效的资源规划和分配
- 批准号:
2027884 - 财政年份:2020
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
CAREER: Game-Theoretic Analysis and Design for Cross-Layer Cyber-Physical System Security and Resilience
职业:跨层网络物理系统安全性和弹性的博弈论分析和设计
- 批准号:
1847056 - 财政年份:2019
- 资助金额:
$ 30万 - 项目类别:
Continuing Grant
NSF Student Travel Grant for 2018 Conference on Decision and Game Theory for Security (GameSec)
NSF 学生旅费资助 2018 年安全决策与博弈论会议 (GameSec)
- 批准号:
1833521 - 财政年份:2018
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
SaTC: NSF Student Travel Grant for IEEE CNS 2017
SaTC:2017 年 IEEE CNS 的 NSF 学生旅行补助金
- 批准号:
1736540 - 财政年份:2017
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
CPS: Breakthrough: A Meta-Game Theoretic Approach to Cyber-Physical Co-Design of Secure and Resilient Control Systems
CPS:突破:安全和弹性控制系统的网络物理协同设计的元博弈论方法
- 批准号:
1544782 - 财政年份:2015
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
Student Travel Grant for GameSec 2015-2016
GameSec 学生旅费补助金 2015-2016
- 批准号:
1558731 - 财政年份:2015
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
CRISP: Type 1: Reductionist and Integrative Approaches to Improve the Resiliency of Multi-Scale Interdependent Critical Infrastructure
CRISP:类型 1:提高多尺度相互依赖的关键基础设施弹性的还原论和综合方法
- 批准号:
1541164 - 财政年份:2015
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
EAGER: Renewables: Game-Theoretic Methods for Analysis and Design of Distributed Renewable-Based Energy Resources in Smart Grids
EAGER:可再生能源:智能电网中分布式可再生能源分析和设计的博弈论方法
- 批准号:
1550000 - 财政年份:2015
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
相似国自然基金
greenwashing behavior in China:Basedon an integrated view of reconfiguration of environmental authority and decoupling logic
- 批准号:
- 批准年份:2024
- 资助金额:万元
- 项目类别:外国学者研究基金项目
相似海外基金
Impact of nurses' behavior change and implementing evidence-based practice to improve quality indicators in intensive care units in low-and middle-income countries
护士行为改变和实施循证实践对提高低收入和中等收入国家重症监护病房质量指标的影响
- 批准号:
24K02733 - 财政年份:2024
- 资助金额:
$ 30万 - 项目类别:
Grant-in-Aid for Scientific Research (B)
Security Evaluation Method Against Deep-Learning-Based Side-Channel Attacks Exploiting Physical Behavior of Cryptographic Hardware
针对利用密码硬件物理行为的基于深度学习的侧信道攻击的安全评估方法
- 批准号:
23K11102 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Grant-in-Aid for Scientific Research (C)
Collaborative Research: IHBEM: The fear of here: Integrating place-based travel behavior and detection into novel infectious disease models
合作研究:IHBEM:这里的恐惧:将基于地点的旅行行为和检测整合到新型传染病模型中
- 批准号:
2327797 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Continuing Grant
Systematization of Cognitive Behavioral Therapy based on the influence of rule-governed behavior in frequent stealing behavior
基于规则行为对频繁偷盗行为的影响的认知行为治疗的系统化
- 批准号:
23K18975 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Grant-in-Aid for Research Activity Start-up
CT imaging-based prediction and stratification of motor and cognitive behavior after stroke for targeted game-based robot therapy: Diversity Supplement
基于 CT 成像的中风后运动和认知行为的预测和分层,用于基于游戏的有针对性的机器人治疗:多样性补充
- 批准号:
10765218 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Mechanistic Understanding of Multi-scale Sintering Behavior Influenced by Anisotropic Particle and Pore Distributions in Extrusion-based Metal Additive Manufacturing
基于挤压的金属增材制造中受各向异性颗粒和孔隙分布影响的多尺度烧结行为的机理理解
- 批准号:
2224309 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Standard Grant
Development of plastic theory based on statistical mechanics to realize effect of dislocation behavior
发展基于统计力学的塑性理论以实现位错行为的效果
- 批准号:
23K18458 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Grant-in-Aid for Challenging Research (Exploratory)
Structural Performance of RC Frame with Precast DFRCC Walls Based on Material Mechanics Behavior Model
基于材料力学行为模型的预制DFRCC墙体RC框架结构性能
- 批准号:
23H01549 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Grant-in-Aid for Scientific Research (B)
Maintaining behavior change: A 6-year follow-up of adolescent 'night-owls' and an evaluation of a habit-based sleep health intervention
维持行为改变:对青少年“夜猫子”进行 6 年随访以及基于习惯的睡眠健康干预评估
- 批准号:
10701399 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别:
Validating Sensor-based Approaches for Monitoring Eating Behavior and Energy Intake by Accounting for Real-World Factors that Impact Accuracy and Acceptability
通过考虑影响准确性和可接受性的现实因素来验证基于传感器的饮食行为和能量摄入监测方法
- 批准号:
10636986 - 财政年份:2023
- 资助金额:
$ 30万 - 项目类别: