CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 13051 > Article
Presentation + Paper
7 June 2024 Dynamic reinforcement learning for network defense: botnet detection and eradication
Robert M. Schabinger, Caleb Carlin, Jonathan Mullin, David A. Bierbrauer, Emily A. Nack, John A. Pavlik, Alexander V. Wei, Nathaniel D. Bastian, Metin B. Ahiskali
Author Affiliations +
Proceedings Volume 13051, Artificial Intelligence and Machine Learning for Multi-Domain Operations Applications VI; 130511D (2024) https://doi.org/10.1117/12.3012783
Event: SPIE Defense + Commercial Sensing, 2024, National Harbor, Maryland, United States
Abstract
In this work, we demonstrate the potential of dynamic reinforcement learning (RL) methods to revolutionize cybersecurity. The RL framework we develop is shown to be capable of shutting down an aggressive botnet, which initially uses spear phishing to establish itself in a Department of Defense (DoD) network. To ensure a suitable real-time response, we employ CP, a transformer model trained for network anomaly detection, to factorize the state space accessible to our RL agent. As the fidelity of our cyber scenario is of the utmost importance for meaningful RL training, we leverage the CyberVAN emulation environment to model an appropriate DoD enterprise network to attack and defend. Our work represents an important step towards harnessing the power of RL to automate general and fully-realistic Defensive Cyber Operations (DCOs).
Conference Presentation
(2024) Published by SPIE. Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Robert M. Schabinger, Caleb Carlin, Jonathan Mullin, David A. Bierbrauer, Emily A. Nack, John A. Pavlik, Alexander V. Wei, Nathaniel D. Bastian, and Metin B. Ahiskali "Dynamic reinforcement learning for network defense: botnet detection and eradication", Proc. SPIE 13051, Artificial Intelligence and Machine Learning for Multi-Domain Operations Applications VI, 130511D (7 June 2024); https://doi.org/10.1117/12.3012783
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 11 PAGES + PRESENTATION
DOWNLOAD PAPER SAVE TO MY LIBRARY
WATCH
PRESENTATION
GET CITATION
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Network security
Computer networks
Defense and security
Machine learning
Inspection
Monte Carlo methods
Data modeling
RELATED CONTENT
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top