GameSec 2018

Conference on Decision and Game Theory for Security

October 29 - 31, 2018, Seattle, WA, USA

2018 Conference on Decision and Game Theory for Security

GameSec 2018, the 9th Conference on Decision and Game Theory for Security will take place in Seattle, WA, USA, on October 29 - 31, 2018.

The conference proceedings will be published by Springer as part of the LNCS series.

GameSec 2019, the 10th Conference on Decision and Game Theory for Security, will take place in Stockholm, Sweden, on October 30-November 1, 2019.


Recent advances in information and communication technologies pose significant security challenges that impact all aspects of modern society. The 9th Conference on Decision and Game Theory for Security in Seattle, Washington, USA, focuses on protection of heterogeneous, large-scale and dynamic systems as well as managing security risks faced by critical infrastructures through rigorous and practically-relevant analytical methods. GameSec 2018 invites novel, high-quality theoretical and practical-relevant contributions, which apply decision and game theory, as well as related techniques such as distributed optimization, dynamic control and mechanism design, to build resilient, secure, and dependable networked systems. The goal of GameSec 2018 is to bring together academic and industrial researchers in an effort to identify and discuss the major technical challenges and recent results that highlight the connections between game theory, control, distributed optimization, economic incentives and real-world security, reputation, trust and privacy problems.

Conference Topics include (but are not restricted to):

The goal of GameSec is to bring together academic and indus- trial researchers in an effort to identify and discuss the major technical challenges and recent results that highlight the connection between game theory, control, distributed optimization, economic incentives and real world security, reputation, trust and privacy problems in a variety of technological systems. Submissions should solely be original research papers that have neither been published nor submitted for publication elsewhere.

  • Game theory, control, and mechanism design for security and privacy
  • Decision making for cybersecurity and security requirements engineering
  • Security and privacy for the Internet-of-Things, cyber-physical systems, cloud computing, resilient control systems, and critical infrastructure
  • Pricing, economic incentives, security investments, and cyber insurance for dependable and secure systems
  • Risk assessment and security risk management
  • Security and privacy of wireless and mobile communications, including user location privacy
  • Socio-technological and behavioral approaches to security
  • Empirical and experimental studies with game, control, or optimization theory-based analysis for security and privacy
  • Adversarial Machine Learning and the role of AI in system security

Special Track on "Adversarial AI"

Day 2, Afternoon session. AI techniques have made significant inroads into security applications, such as crime prediction and detection in physical security, and intrusion and malware detection in cybersecurity. An important challenge in such adversarial applications of AI is that sophisticated malicious parties can manipulate the AI decision process, for example, by changing the decision environment or poisoning data used for learning, in order to degrade its effectiveness. The research area of Adversarial AI aims to understand vulnerabilities of AI systems to such adversarial tampering, as well as to develop techniques which make intelligent autonomous decision making robust to adversarial subversion. This special track invites submissions on approaches for attacking and defending AI systems, including research on adversarial machine learning, planning in adversarial settings, adversarial crowdsourcing, and more broadly on the use of AI in security and privacy. Please submit to the special track under the topic "Adversarial AI".

Tutorial Session on "Game-Theoretic Security"

Day 1, Morning session. Cyber attacks on both databases and critical infrastructure have threatened public and private sectors. Meanwhile, ubiquitous tracking and wearable computing have infringed upon privacy. Advocates and engineers have recently proposed using defensive deception as a means to leverage the information asymmetry typically enjoyed by attackers as a tool for defenders. In this tutorial, we give the audience an overview on the application of game theory to model deception for cybersecurity and privacy.  The goal of this tutorial is to elaborate the taxonomy of deception, to provide the state-of-art literature, and to discuss recent advances in deceptive technologies in cybersecurity and privacy. Presentations from the tutorials will be posted here and here.

Plenary Speakers

Plenary Speaker: Day 1

Photo: Professor John Baras
John Baras
John S. Baras is a Distinguished University Professor and holds the endowed Lockheed Martin Chair in Systems Engineering at the Institute for Systems Research and the Department of Electrical and Computer Engineering of the University of Maryland College Park. He received his Ph.D. degree in Applied Mathematics from Harvard University in 1973. From 1985 to 1991, he was the Founding Director of the Institute for Systems Research and since 1992 he has been the Director of the Maryland Center for Hybrid Networks, which he co-founded. He is an IEEE Life Fellow, SIAM Fellow, AAAS Fellow, NAI Fellow, IFAC Fellow, AIAA Associate Fellow, AMS Fellow, Member of the National Academy of Inventors and a Foreign Member of the Royal Swedish Academy of Engineering Sciences. Major honors and awards include the 1980 George Axelby Award from the IEEE Control Systems Society, the 2006 Leonard Abraham Prize from the IEEE Communications Society, the 2017 IEEE Simon Ramo Medal, the 2017 AACC Richard E. Bellman Control Heritage Award., and the 2018 AIAA Aerospace Communications Award. In 2016 he was inducted in the University of Maryland A. J. Clark School of Engineering Innovation Hall of Fame. In June of 2018 he was awarded a Doctorate Honoris Causa by his alma mater the National Technical University of Athens, Greece. He has been awarded eighteen patents and has been honored worldwide with many awards as innovator and leader of economic development.
Title: Security and Trust in Networked Systems: Logic, Analysis, Graphs and Games

Abstract: We are in the age of networks and networked systems: communication, transportation, economic, biological, healthcare, educational, human, social, web-based, etc. This evolution and reality have created unprecedented advances that are impacting every aspect of life and work. However, many of these advances, and resulting expanding markets, are threatened by weaknesses in security and trust. We present several vignettes on key prototypical problems, which we analyze by combining methods from formal models and logic, from analysis, from graph theory and from game theory (both non-cooperative and cooperative). We focus on dynamic problems where the scenario and the systems involved evolve over time. We describe several specific applications of these methods including: the role of trust in collaboration and social networks, distributed inference systems, smart grids, wireless network routing protocols, distributed control systems, distributed consensus. We close by describing challenges and future research directions.

Plenary Speaker: Day 2

Photo: Professor João Hespanha
João Hespanha
João P. Hespanha received his Ph.D. degree in electrical engineering and applied science from Yale University, New Haven, Connecticut in 1998. From 1999 to 2001, he was a Professor at the University of Southern California, Los Angeles. He moved to the University of California, Santa Barbara in 2002, where he currently holds a Professor position with the Department of Electrical and Computer Engineering. Dr. Hespanha is the recipient of the Yale University’s Henry Prentiss Becton Graduate Prize for exceptional achievement in research in Engineering and Applied Science, a National Science Foundation CAREER Award, the 2005 best paper award at the 2nd Int. Conf. on Intelligent Sensing and Information Processing, the 2005 Automatica Theory/Methodology best paper prize, the 2006 George S. Axelby Outstanding Paper Award, and the 2009 Ruberti Young Researcher Prize. Dr. Hespanha is a Fellow of the IEEE and he was an IEEE distinguished lecturer from 2007 to 2013. His current research interests include multi-agent control systems, distributed control over communication networks (also known as networked control systems), optimization, hybrid and switched systems, stochastic modeling in biology, and network security.
Title: Estimation in Cyber-Physical Systems Under Attack

Abstract: Computer-based sensors are heavily used in process of monitoring and controlling complex and large-scale physical system, such as the power grid, transportation systems, chemical processes, and manufacturing plants. While these sensors can yield great benefits in terms of improved efficiency, lower costs, and increased safety, they are often prone to attacks and can introduce significant security risks. In this talk we explore how the formulation of classical estimation problems needs to be revisited to address scenarios where sensors are prone to attacks. By considering the joint design of estimators and attack policies, we obtain “resilient” estimators that use redundancy in an optimal fashion. While the design and construction of these optimal resilient estimators may be computationally expensive, we shall see that is often possible to find quasi-optimal solutions that are computationally attractive. For concreteness, we illustrate these ideas in a case study involving the estimation of power system oscillations using Phase Measurements Units.

Keynote: Day 1

Photo: Dr. J. Sukarno Mertoguno
J. Sukarno Mertoguno
Dr. J. Sukarno Mertoguno manages basic and applied sience research in cyber security and complex software for The Office of Naval Research (ONR). Before joining ONR he worked as a system & chip architect and an entrepreneur in the Silicon Valley, where he has worked on various chips and systems, such as embedded processors, switching fabric, network processors, and various other hardware accelerators, including TCP/IP, NFS, mobile anti-malware, etc. He received a Ph.D in electrical engineering from SUNY-Binghamton. He also has background in Theoretical Physics.
Title: Radical View in S&T; Learn2Reason, CryptoFactory & BFT++

Abstract: ONR Cyber & Software program prefers to invest in potentially impactful but less popular topics for better return on investment. Over the years, the program has initiated several innovative and radical approached to problem in cyber security and complex software. Approaches that would have not existed today without the program involvement. Examples of these radical view and concept in science and technology will be presented in this talk. Specifically, this talk will discuss synergistic integration of formal and statistical reasoning (Learn2Reason) inspired by Daniel Kahneman book “Thinking Fast and Slow”, a concept for automatically synthesizing secure cryptographic algorithms (CryptoFactory), and a methods for achieving cyber-attack resilience for cyber physical systems (BFT++).

Conference Sponsors and Supporters

We thank all our sponsors for their kind support.

GameSec 2018 Proceedings

GameSec 2018 proceedings will be published by Springer as part of the LNCS series. During the conference, the proceedings will be available free of charge here.