报告题目: A Bayesian Game Theoretic Approach for Inspecting Web-Based Malvertising
讲者: Dr. Chin-Tser Huang, Professor, Department of Computer Science & Engineering, University of South Carolina
Web-based advertising systems have been exploited by cybercriminals to disseminate malware to an enormous number of end-users and their vulnerable machines. To protect their malicious ads and malware from detection by the ad network, malvertisers apply various redirection and evasion techniques. Meanwhile, the ad network can also apply inspection techniques to spoil the malvertiser’s tricks and expose the malware. However, both the malvertiser and the ad network are under resource and time constraints. Moreover, the ad network is disadvantaged because it has incomplete information about whether it is facing a benign or malicious advertiser. In this talk, we discuss how to apply the Bayesian game model by designing two games to formulate the problem of inspecting the Web-based malvertising. The first game has two types of Advertisers, namely Malicious and Benign, and one type of Defender; the second game has two types of Attackers, Advanced and Simple, in terms of their capability of redirection and evasion, and one type of Defender. We define their strategies and payoff functions and compute their Bayesian Nash equilibria. We use numeric simulation to evaluate our game theoretic models, and we derive several insights from the results that can serve as guidelines for the ad network to decide its best inspection strategy.
主讲人介绍： Dr. Chin-Tser Huang is a Professor in the Department of Computer Science and Engineering at University of South Carolina at Columbia. He received the B.S. degree in Computer Science and Information Engineering from National Taiwan University, Taipei, Taiwan, in 1993, and the M.S. and Ph.D. degrees in Computer Sciences from The University of Texas at Austin in 1998 and 2003, respectively. His research interests include network security, network protocol design and verification, and distributed systems. He is the director of the Secure Protocol Implementation and Development (SPID) Laboratory at the University of South Carolina. He is the author (along with Mohamed Gouda) of the book “Hop Integrity in the Internet,” published by Springer in 2005. His research has been funded by DARPA, AFOSR, AFRL, NSF, and NEH. He is a recipient of the USAF Summer Faculty Fellowship Award in 2008-2010, 2016 and 2018, and of the AFRL Visiting Faculty Research Program Award in 2011-2015 and 2017. He is a Senior Member of IEEE and ACM.