Incorporating Deception into CyberBattleSim for Autonomous Defense

Cyber deception considers the human aspects of an attacker in order to impede cyber attacks and improve Deceptive elements, including honeypots and decoys, security [17], which can also translate to advantages against were incorporated into the Microsoft CyberBattleSim automated attackers. Cyber deception aims to understand and experimentation and research platform influence an attacker even after they have already infiltrated [30]. The defensive capabilities of the deceptive a network, and ultimately to delay, deter, and disrupt their elements were tested using reinforcement attack. While some ML methods for detection in cybersecurity learning based attackers in the provided capture are still working on improving true-positive/false-positive the flag environment. The attacker's progress was rates, cyber deception technologies can often naturally act found to be dependent on the number and location as a high-confidence early warning mechanism.