@inproceedings{f37a8c3402a34ee18b2c225490a8ddac,
title = "Towards an AI-powered Player in Cyber Defence Exercises",
abstract = "Cyber attacks are becoming increasingly frequent, sophisticated, and stealthy. This makes it harder for cyber defence teams to keep up, forcing them to automate their defence capabilities in order to improve their reactivity and efficiency. Therefore, we propose a fully automated cyber defence framework that no longer needs support from humans to detect and mitigate attacks within a complex infrastructure. We design our framework based on a real-world case-Locked Shields-the world's largest cyber defence exercise. In this exercise, teams have to defend their networked infrastructure against attacks, while maintaining operational services for their users. Our framework architecture connects various cyber sensors with network, device, application, and user actuators through an artificial intelligence (AI)-powered automated team in order to dynamically secure the cyber environment. To the best of our knowledge, our framework is the first attempt towards a fully automated cyber defence team that aims at protecting complex environments from sophisticated attacks.",
keywords = "artificial intelligence, automation, cyber defence, Locked Shields, security",
author = "Roland Meier and Arturs Lavrenovs and Kimmo Heinaaro and Luca Gambazzi and Vincent Lenders",
note = "Publisher Copyright: {\textcopyright} 2021 NATO CCDCOE.; 13th International Conference on Cyber Conflict, CyCon 2021 ; Conference date: 25-05-2021 Through 28-05-2021",
year = "2021",
month = may,
day = "25",
doi = "10.23919/CyCon51939.2021.9467801",
language = "English",
series = "International Conference on Cyber Conflict, CYCON",
publisher = "NATO CCD COE Publications",
pages = "309--326",
editor = "Tat'ana Jancarkova and Lauri Lindstrom and Gabor Visky and P. Zotz",
booktitle = "2021 13th International Conference on Cyber Conflict, CyCon 2021",
address = "Estonia",
}