Optimising the Release Order of Defensive Mechanisms

Suliman Alsuhibany; Ahmad Alonaizi; Christopher Smith; Professor Aad van Moorsel

Optimising the Release Order of Defensive Mechanisms Lookup NU author(s) Suliman Alsuhibany Ahmad Alonaizi Christopher Smith Professor Aad van Moorsel



Author(s)		Alsuhibany S A, Alonaizi A, Smith C, van Moorsel A
Publication type		Report
Series Title		School of Computing Science Technical Report Series
Year		2012
Date		May 2012
Report Number		1333
Pages		14



Full text is available for this publication: Full text file 1




In the practical use of security mechanisms such as CAPTCHAs and spam filters, attackers and defenders exchange 'blows', each celebrating (temporary) success in breaking and defending. We are interested in the question of whether the order in which defensive algorithms are released has a significant impact on the time taken by attackers to break the combined set of algorithms. The rationale behind our approach is that attackers learn from their attempts, and that the release schedule of defensive mechanisms can be adjusted so as to impair that learning experience. This paper introduces this problem. We show that our hypothesis holds for an experiment using several simplified but representative spam filter algorithms—that is, the order in which spam filters are released has a statistically significant impact on the time attackers take to break all algorithms. We then model the problem as an optimization problem using a Markov Decision Process model. We present a tailored optimization algorithm to obtain efficiently the optimal release strategies for any given model.



Institution		Newcastle University
Place Published		Newcastle upon Tyne
Actions