SoK: A Comparison of Autonomous Penetration Testing Agents

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdragepeer review

Samenvatting

In the still growing field of cyber security, machine learning methods have largely been employed for detection tasks. Only a small portion revolves around offensive capabilities. Through the rise of Deep Reinforcement Learning, agents have also emerged with the goal of actively assessing the security of systems by the means of penetration testing. Thus learning the usage of different tools to emulate humans. In this paper we present an overview, and comparison of different autonomous penetration testing agents found within the literature. Various agents have been proposed, making use of distinct methods, but several factors such as modelling of the environment and scenarios, different algorithms, and the difference in chosen methods themselves, make it difficult to draw conclusions on the current state and performance of those agents. This comparison also lets us identify research challenges that present a major limiting factor, such as handling large action spaces, partial observability, defining the right reward structure, and learning in a real-world scenario.

Originele taal-2Engels
TitelARES 2024 - 19th International Conference on Availability, Reliability and Security, Proceedings
UitgeverijAssociation for Computing Machinery
ISBN van elektronische versie9798400717185
DOI's
StatusGepubliceerd - 30 jul. 2024
Evenement19th International Conference on Availability, Reliability and Security, ARES 2024 - Vienna, Oostenrijk
Duur: 30 jul. 20242 aug. 2024

Publicatie series

NaamACM International Conference Proceeding Series

Congres

Congres19th International Conference on Availability, Reliability and Security, ARES 2024
Land/RegioOostenrijk
StadVienna
Periode30/07/242/08/24

Vingerafdruk

Duik in de onderzoeksthema's van 'SoK: A Comparison of Autonomous Penetration Testing Agents'. Samen vormen ze een unieke vingerafdruk.

Citeer dit