A Game Theoretical Model for Anticipating Email Spear-Phishing Strategies
DOI:
https://doi.org/10.4108/eai.26-5-2020.166354Keywords:
Attack, game theory, non-cooperative game, email spear-phishing, QREAbstract
A solution to help victims against phishing is anticipating and leveraging impacts related to phisher actions.In this regard, this work reshapes game theoretical logic between Intrusion Detection System (IDS) agents andinsiders to email spear-phishing interactions. The email spear-phishing attack is designed as a non-cooperativeand repeated game between opponents. Additionally, this work relies on Quantal Response Equilibrium (QRE)to build a game theoretical approach to predict the phisher’s future intent based on past actions of bothplayers. This approach is coupled with a recommendation strategy of appropriate allocation of resources toinvest to strengthen user protection. Simulations on spear-phishing scenarios demonstrate the ability of thefinal system to intuitively guess the most likely phisher decisions. This work provides intelligence to spear-phishing detectors and humans such that they can anticipate next phisher actions.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2022 EAI Endorsed Transactions on Scalable Information Systems
This work is licensed under a Creative Commons Attribution 3.0 Unported License.
This is an open access article distributed under the terms of the CC BY-NC-SA 4.0, which permits copying, redistributing, remixing, transformation, and building upon the material in any medium so long as the original work is properly cited.
