Adelaide Research & Scholarship
Please use this identifier to cite or link to this item:
https://hdl.handle.net/2440/139582
| Citations | ||
| Scopus | Web of Science® | Altmetric |
|---|---|---|
|
?
|
?
|
|
Full metadata record
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Zhang, Y. | - |
| dc.contributor.author | Ward, M. | - |
| dc.contributor.author | Guo, M. | - |
| dc.contributor.author | Nguyen, H. | - |
| dc.date.issued | 2023 | - |
| dc.identifier.citation | Proceedings of the ACM Conference on Computer and Communications Security, 2023, pp.993-1003 | - |
| dc.identifier.isbn | 9798400700989 | - |
| dc.identifier.issn | 1543-7221 | - |
| dc.identifier.uri | https://hdl.handle.net/2440/139582 | - |
| dc.description.abstract | Active Directory (AD) is a popular information security management system for Windows domain networks and is an ongoing common target for cyber attacks. Most real-world Active Directory systems consist of millions of entities and links, and there are currently no efficient and effective solutions for hardening Active Directory systems of such scale. In this paper, we propose a novel and scalable double oracle-based algorithm for hardening large AD systems. We formulate the problem as a Stackelberg game between the defender and the attacker on a weighted AD attack graph, where the defender acts as the leader with a budget, and the objective is to find an optimal defender’s pure strategy. We show that our double oracle-based solution has significantly improved speed and scalability compared with previous solutions for hardening AD systems. Lastly, we compare with GoodHound weakest links and show that our solution provides better recommendations for targeting the elimination of optimal attack paths. | - |
| dc.description.statementofresponsibility | Yumeng Zhang, Max Ward, Mingyu Guo, Hung Nguyen | - |
| dc.language.iso | en | - |
| dc.publisher | Association for Computing Machinery | - |
| dc.rights | © 2023 Copyright held by the owner/author(s). Publication rights licensed to ACM. | - |
| dc.source.uri | https://dl.acm.org/doi/proceedings/10.1145/3579856 | - |
| dc.subject | Active Directory; Network security; Attack graph; Stackelberg game; Double oracle | - |
| dc.title | A Scalable Double Oracle Algorithm for Hardening Large Active Directory Systems | - |
| dc.type | Conference paper | - |
| dc.contributor.conference | ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS) (10 Jul 2023 - 14 Jul 2023 : Melbourne Victoria, Australia) | - |
| dc.identifier.doi | 10.1145/3579856.3590343 | - |
| dc.publisher.place | Online | - |
| dc.relation.grant | http://purl.org/au-research/grants/arc/NI210100139 | - |
| pubs.publication-status | Published | - |
| dc.identifier.orcid | Zhang, Y. [0000-0002-8602-0277] | - |
| dc.identifier.orcid | Guo, M. [0000-0002-3478-9201] | - |
| dc.identifier.orcid | Nguyen, H. [0000-0003-1028-920X] | - |
| Appears in Collections: | Computer Science publications | |
Files in This Item:
There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.