1. Training of cyber defense agents in tactical inter-organizational networks by using federated learning.
- Author
-
Aurisch, Thorsten
- Subjects
INTERORGANIZATIONAL networks ,MOBILE learning ,MACHINE learning ,AD hoc computer networks ,TRAINING needs ,MALWARE - Abstract
Malware used in advanced persistent threats often establish a covert channel. By means of such a channel, the malware can communicate with external Command & Control servers or send classified data to a server controlled by the attacker. In military networks, these covert transmissions are a security problem with significant impact on the success of a military operation. Mobile agents in combination with machine learning are particularly suitable to detect and mitigate these type of attacks. However, a mobile agent needs to be trained before its deployment. In this paper, a concept is defined how federated learning can be used to train the mobile agents in tactical networks if the training data is distributed on the nodes of a tactical network. Furthermore, we propose an algorithm to select the nodes that are involved in the training. The proposed concepts and methods are evaluated regarding their efficiency. The evaluation considers in particular federated learning in the inter-organizational tactical networks because multinational armed forces are often involved in modern military operations. [ABSTRACT FROM AUTHOR]
- Published
- 2022
- Full Text
- View/download PDF