Publication Type
Journal Article
Version
acceptedVersion
Publication Date
1-2024
Abstract
There are various security-critical decisions routinely made, on the basis of information provided by peers: routing messages, user reports, sensor data, navigational information, blockchain updates, etc. Jury theorems were proposed in sociology to make decisions based on information from peers, which assume peers may be mistaken with some probability. We focus on attackers in a system, which manifest as peers that strategically report fake information to manipulate decision making. We define the property of robustness: a lower bound probability of deciding correctly, regardless of what information attackers provide. When peers are independently selected, we propose an optimal, robust decision mechanism called Most Probable Realisation (MPR). When peer collusion affects source selection, we prove that generally it is NP-hard to find an optimal decision scheme. We propose multiple heuristic decision schemes that can achieve optimality for some collusion scenarios.
Keywords
Multi-source decision making, Provable decision making, Malicious feedback, Collusion attacks, Trust evaluation
Discipline
Information Security | Software Engineering
Research Areas
Software and Cyber-Physical Systems
Publication
IEEE Transactions on Dependable and Secure Computing
First Page
1
Last Page
16
ISSN
1545-5971
Identifier
10.1109/TDSC.2024.3353295
Publisher
Institute of Electrical and Electronics Engineers
Citation
WANG, Dongxia; MULLER, Tim; and SUN, Jun.
Provably secure decisions based on potentially malicious information. (2024). IEEE Transactions on Dependable and Secure Computing. 1-16.
Available at: https://ink.library.smu.edu.sg/sis_research/8650
Copyright Owner and License
Authors
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.
Additional URL
https://doi.org/10.1109/TDSC.2024.3353295