Towards a High Fidelity Training Environment for Autonomous Cyber Defense Agents

Sean Oesch, Amul Chaulagain, Brian Weber, Matthew Dixson, Amir Sadovnik, Benjamin Roberson, Cory Watson, Phillipe Austria

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Cyber defenders are overwhelmed by the frequency and scale of attacks against their networks. This problem will only be exacerbated as attackers leverage AI to automate their workflows. Autonomous cyber defense capabilities could aid defenders by automating operations and adapting dynamically to novel threats. However, existing training environments fall short in areas such as generalization, explainability, scalability, and transferability, making it intractable to train agents that will be effective in real networks. In this paper we take an important step towards creating autonomous cyber defense agents - we present a high fidelity training environment called Cyberwheel that includes both simulation and emulation capabilities. Cyberwheel simplifies customization of the training network and easily allows redefining the agent's reward function, observation space, and action space to support rapid experimentation of novel approaches to agent design. It also provides visibility into agent behaviors necessary for agent evaluation and sufficient documentation / examples to lower the barrier to entry. As an example use case of Cyberwheel, we present initial results training an autonomous agent to deploy cyber deception strategies in simulation.

Original languageEnglish
Title of host publicationProceedings of CSET 2024 - 17th Cyber Security Experimentation and Test Workshop
PublisherAssociation for Computing Machinery
Pages91-99
Number of pages9
ISBN (Electronic)9798400709579
DOIs
StatePublished - Aug 13 2024
Event17th Cyber Security Experimentation and Test Workshop, CSET 2024 - Philadelphia, United States
Duration: Aug 13 2024 → …

Publication series

NameACM International Conference Proceeding Series

Conference

Conference17th Cyber Security Experimentation and Test Workshop, CSET 2024
Country/TerritoryUnited States
CityPhiladelphia
Period08/13/24 → …

Keywords

  • Autonomous Cybersecurity Reinforcement learning

Fingerprint

Dive into the research topics of 'Towards a High Fidelity Training Environment for Autonomous Cyber Defense Agents'. Together they form a unique fingerprint.

Cite this