Skip to main content Accessibility help

We use cookies to distinguish you from other users and to provide you with a better experience on our websites. Close this message to accept cookies or find out how to manage your cookie settings.

Close cookie message
×
Hostname: page-component-848d4c4894-8bljj Total loading time: 0 Render date: 2024-06-20T06:38:52.993Z Has data issue: false hasContentIssue false

13 - Evaluating Deployed Decision-Support Systems for Security: Challenges, Analysis, and Approaches

from PART IV - FUTURE RESEARCH

Published online by Cambridge University Press:  05 January 2012

Milind Tambe
By
Matthew E. Taylor ,
Christopher Kiekintveld  and
Milind Tambe
Milind Tambe
Affiliation:
University of Southern California
Get access

Summary

Introduction

As discussed in other chapters of this book, an increasing number of technically sophisticated tools are available to support decisionmaking for security resource allocation in many different domains. In this chapter we discuss the question of evaluating these deployed security systems, using examples from our own research to illustrate some of the key challenges in doing evaluation for security systems. Two of the primary difficulties are (1) that we cannot rely on adversaries to cooperate in evaluation, which makes it difficult to validate models, and (2) there is (thankfully) very little data available about real-world terrorist attacks.

Despite the difficulties of comprehensive evaluation in security domains, it is only by asking the question, how well does a system work? that policy makers can decide how to allocate finite resources to to different security measures. We discuss the goals of security systems, the elements that comprise these systems, and different approaches for evaluation. Every approach has drawbacks, so in lieu of an ideal test, we advocate a comprehensive style of evaluation that uses diverse metrics and data to perform cost-benefit analysis for the complete system. We also emphasize that the focus of the evaluation is not, is system X the perfect security system? which is an impossible standard. Rather, the relevant question is which of the available alternatives should be used? Providing strong evidence that one alternative is superior to other approaches is often feasible, even when providing exact quantitative measures of value is not.

Type
Chapter
Information
Security and Game Theory
Algorithms, Deployed Systems, Lessons Learned
 , pp. 254 - 284
Publisher: Cambridge University Press
Print publication year: 2011

Access options

Get access to the full version of this content by using one of the access options below. (Log in options will check for institutional or personal access. Content may require purchase if you do not have access.)

References

G. H., Baker. A vulnerability assessment methodology for critical infrastructure sites. In DHS Symposium: R and D Partnerships in Homeland Security, 2005.Google Scholar
J., Berejikian. A cognitive theory of deterrence. Journal of Peace Research, (39):165–183, 2002.Google Scholar
V. M., Bier. Choosing what to protect. Risk Analysis, 27(3):607–620, 2007.Google Scholar
V. M., Bier, N., Haphuriwat, J., Menoyo, R., Zimmerman, and A. M., Culpen. Optimal resource allocation for defense of targets based on differing measures of attractiveness. Risk Analysis, 28(3):763–770, 2008.Google Scholar
V. M., Bier, Jr. L. A., Cox, and M. N., Azaiez. Why both game theory and reliability theory are important in defending infrastructure against intelligent attacks. In Game Theoretic Risk Analysis and Security Theats, volume 128. Springer US, 2009.Google Scholar
R., Blundell and M., Costa-Dias. Alternative approaches to evaluation in empirical microeconomics. Journal of Human Resources, 2009.Google Scholar
V., Conitzer and T., Sandholm. Computing the optimal strategy to commit to. In Proc. of Conference on Electronic Commerce, 2006.Google Scholar
First Sargent, Cruz. Personal communication, August 20 2009.
T., Edmunds and R., Wheeler. Setting priorities. In Stephen M., Maurer, editor, WMD Terrorism, chapter 7, pages 191–209. MIT Press, Cambridge, MA, 2009.Google Scholar
I., Erev, A. E., Roth, R. L., Slonim, and G., Barron. Predictive value and usefulness of game theoretic models. International Journal of Forecasting, 18(3):359–368, 2002.Google Scholar
The United States Government Accountability Office: GAO. Aviation security: Federal air marshal service has taken actions to fulfill its core mission and address workforce issues, but additional actions are needed to improve workforce survey, January 2009. GAO-09-273.
M., Gerson and J., Boyars. The future of U.S. deterrence; constructing effective strategies to deter states and non-state actors, 2007.www.cna.org/documents/D0017171.A2.pdf.
S. H., Jacobson, T., Karnai, and J. E., Kobza. Assessing the impact of deterrence on aviation checked baggage screening strategies. International J. of Risk Assessment and Management, 5(1):1–15, 2005.Google Scholar
M., Kearns and L. E., Ortiz. Algorithms for interdependent security games. In Neural Information Processing Systems (NIPS), 2003.Google Scholar
C., Kiekintveld and M., Wellman. Selecting strategies using empirical game models: An experimental analysis of meta-strategies. In International Conference on Autonomous Agents and Multiagent Systems (AAMAS), 2008.Google Scholar
C., Kiekintveld, M., Jain, J., Tsai, J., Pita, F., Ordónez, and M., Tambe. Computing optimal randomized resource allocations for massive security games. In International Conference on Autonomous Agents and Multiagent Systems (AAMAS), 2009.Google Scholar
C., Kiekintveld, J., Marecki, and M., Tambe. Approximation methods for infinite Bayesian Stackelberg games: Modeling distributional payoff uncertainty. In International Conference on Autonomous Agents and Multiagent Systems (AAMAS), 2011.Google Scholar
Y., Kou, C., Lu, S., Sinvongwattana, and Y.P., Huang. Survey of fraud detection techniques. In Proc. of IEEE Networking, 2004.Google Scholar
R., Lazarick. Airport vulnerability assessment – a methodology evaluation. In Proc. of 33rd IEEE International Carnahan Conference on Security Technology, 1999.Google Scholar
A., Murr. Random checks. In Newsweek National News. September 2007. http://www.newsweek.com/id/43401.Google Scholar
P., Paruchuri, J. P., Pearce, J., Marecki, M., Tambe, F., Ordonez, and S., Kraus. Playing games with security: An efficient exact algorithm for Bayesian Stackelberg games. In International Conference on Autonomous Agents and Multiagent Systems (AAMAS), 2008.Google Scholar
J., Pita, M., Jain, C., Western, C., Portway, M., Tambe, F., Ordonez, S., Kraus, and P., Paruchuri. Deployed ARMOR protection: The application of a game theoretic model for security at the Los Angeles International Airport. In Proc. of International Conference on Autonomous Agents and Multiagent Systems (AAMAS), 2008.Google Scholar
J., Pita, M., Jain, M., Tambe, F., Ordonez, S., Kraus, and R., Magori-Cohen. Effective solutions for real-world stackelberg games: When agents must deal with human uncertainties. In Proc. of International Conference on Autonomous Agents and Multiagent Systems (AAMAS), 2009.Google Scholar
P., Scerri, T., Von Goten, J., Fudge, S., Owens, and K., Sycara. Transitioning multiagent technology to UAV applications. In Proc. of International Conference on Autonomous Agents and Multiagent Systems (AAMAS) Industry Track, 2008.Google Scholar
D., Stevens, T., Hamilton, M., Schaffer, D., Dunham-Scott, J. J., Medby, E. W., Chan, J., Gibson, M., Eisman, R., Mesic, C. T., Kelly, J., Kim, T., LaTourrette, and K. J., Riley. Implementing security improvement options at Los Angeles international airport, 2009. www.rand.org/pubs/documented_briefings/2006/RAND_DB499-1.pdf.
E. F., Taquechel. Validation of rational deterrence theory: Analysis of U.S. government and adversary risk propensity and relative emphasis on gain or loss. Master's thesis, Naval Postgraduate School, March 2010.
T. O., Tengs and J. D., Graham. Risks, costs, and lives saved: Getting better results from regulation. In The opportunity costs of haphazard social investments in lifesaving. American Enterprise Institute, Washington, 1996.Google Scholar
J., Tsai, S., Rathi, C., Kiekintveld, F., Ordóñez, and M., Tambe. IRIS - A tools for strategic security allocation in transportation networks. In International Conference on Autonomous Agents and Multiagent Systems (AAMAS) (Industry Track), 2009.Google Scholar
J., Weibull. Testing game theory. In Steffen, Huck, editor, Advances in Understanding Strategic Behavior: Game Theory, Experiments and Bounded Rationality., pages 85–104. Palgrave MacMillan, 2004.Google Scholar

Save book to Kindle

To save this book to your Kindle, first ensure coreplatform@cambridge.org is added to your Approved Personal Document E-mail List under your Personal Document Settings on the Manage Your Content and Devices page of your Amazon account. Then enter the ‘name’ part of your Kindle email address below. Find out more about saving to your Kindle.

Note you can select to save to either the @free.kindle.com or @kindle.com variations. ‘@free.kindle.com’ emails are free but can only be saved to your device when it is connected to wi-fi. ‘@kindle.com’ emails can be delivered even when you are not connected to wi-fi, but note that service fees apply.

Find out more about the Kindle Personal Document Service.

Available formats
×

Save book to Dropbox

To save content items to your account, please confirm that you agree to abide by our usage policies. If this is the first time you use this feature, you will be asked to authorise Cambridge Core to connect with your account. Find out more about saving content to Dropbox.

Available formats
×

Save book to Google Drive

To save content items to your account, please confirm that you agree to abide by our usage policies. If this is the first time you use this feature, you will be asked to authorise Cambridge Core to connect with your account. Find out more about saving content to Google Drive.

Available formats
×