A Game Theoretical Model for Anticipating Email Spear-Phishing Strategies

Authors

  • Franklin Tchakounte University of Ngaoundéré image/svg+xml
  • Virgile Simé Nyassi University of Ngaoundéré image/svg+xml
  • Duplex Elvis Houpa Danga University of Ngaoundéré image/svg+xml
  • Kalum Priyanath Udagepola Research Development Institute of Technology
  • Marcellin Atemkeng Rhodes University image/svg+xml

DOI:

https://doi.org/10.4108/eai.26-5-2020.166354

Keywords:

Attack, game theory, non-cooperative game, email spear-phishing, QRE

Abstract

A solution to help victims against phishing is anticipating and leveraging impacts related to phisher actions.In this regard, this work reshapes game theoretical logic between Intrusion Detection System (IDS) agents andinsiders to email spear-phishing interactions. The email spear-phishing attack is designed as a non-cooperativeand repeated game between opponents. Additionally, this work relies on Quantal Response Equilibrium (QRE)to build a game theoretical approach to predict the phisher’s future intent based on past actions of bothplayers. This approach is coupled with a recommendation strategy of appropriate allocation of resources toinvest to strengthen user protection. Simulations on spear-phishing scenarios demonstrate the ability of thefinal system to intuitively guess the most likely phisher decisions. This work provides intelligence to spear-phishing detectors and humans such that they can anticipate next phisher actions.

Downloads

Published

18-09-2020

How to Cite

1.
Tchakounte F, Simé Nyassi V, Elvis Houpa Danga D, Priyanath Udagepola K, Atemkeng M. A Game Theoretical Model for Anticipating Email Spear-Phishing Strategies. EAI Endorsed Scal Inf Syst [Internet]. 2020 Sep. 18 [cited 2024 Dec. 4];8(30):e5. Available from: https://publications.eai.eu/index.php/sis/article/view/2083