SlideShare a Scribd company logo

The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion and Cooperation in the Zero-day Market - CODE BLUE 2015, Tokyo

A
a001

Zero-day vulnerabilities are gaining a prominent role in the modern-day intelligence, national security, and law enforcement operations. At the same time, trading vulnerability information or zero-day exploits is considered a risky ordeal. Players in the secretive zero-day market face some inherent obstacles related to time-sensitiveness of traded commodities, trust, price fairness, and possibility of defection. To alleviate some of these hurdles, it was suggested to: 1. Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting; 2. Resort to the use of trusted-third parties (e.g., escrow services), as crucial entities for enabling cooperation of market participants; and 3. Build a reputation system (e.g., reputation score) as an instrument to establish trust relationships between distrustful players. This work presents the first results of an ongoing study on extortion and cooperation in zero-day markets through the lens of game theory. The questions motivating this research are: a. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? b. Can punishment discourage the buyer from defecting? c. Under which conditions a player can extort the opponent? d. Can cooperation be sustained also in fully anonymous or semi-anonymous settings? The talk will address these questions and others, by providing an analysis of the zero-day trading strategies applicable to each scenario. Learn which strategies allows to maximize the profits while trading zero-days in today’s marketplaces. Find out how to avoid getting extorted by zero–day traders. Learn how to extort an unwit market participant. Gain a deeper knowledge about the emergence, sustainability, and breakdown of cooperation. Discover under which conditions the zero-day markets can achieve efficiency.

Technology
1 of 170
Download to read offline
... The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: . Extortion and Cooperation in the Zero-day Market . Alfonso De Gregorio . Founder, BeeWise .. CODE BLUE, Tokyo, October 28th-29th, 2015
.. Discuss . /me @secYOUre #0DayDilemma #CODEBLUE
.. Agenda . 1. The Zero-day Market A hairy business 2. Relevance Should I care? 3. The Zero-day Dilemma Extortion and Cooperation in the Zero-day Market 4. Recommendations to Zero-day traders How to maximize the payoff?
... The Zero-day Market . 1/118 TheZero-dayMarket
..
..
..
..
..
..
..
... Meet Ty
..
..
..
..
..
..
... Meanwhile...
..
..
..
..
..
..
..
..
..
..
..
.. Inherent obstacles . The Zero-day Market . 28/118 1. Time-sensitiveness of traded commodities 2. Trust 3. Price fairness 4. Possibility of defection
.. A hairy business . The Zero-day Market . 29/118 ..
.. The Legitimate Vulnerability Market . The Zero-day Market . 30/118 ..
.. Time-sensitive commodity . The Zero-day Market . 31/118 .. . Valuable only when they are not widely known . Value drops to zero, as soon as the vulnerability is disclosed or a mitigation is released . Transactions should complete in short times . Discretion required
... Every day can be the last day for a 0-day sale
.. Trust . The Zero-day Market . 33/118 .. . No centralized way to locate its players . Finding buyers and sellers is time-consuming . Unfamiliar business partners . Hard to verify intentions
... Oh, grandmother, what a horribly big mouth you have!
.. Transparency and price fairness . The Zero-day Market . 35/118 .. . Adoption levels of the vulnerable component . Presence within a given attack surface . Level of authentication required to exploit it . Difficulty of independent rediscovery . Exploit reliability
... Difficult to measure
.. Tension . The Zero-day Market . 37/118 .. . Disclose and lose? . Proving without disclosing . Two approaches: reveal or demonstrate . Both undesirable
..
.. Reveal . The Zero-day Market . 39/118 .. . Whoever moves first and lose your asset . Buyer steals the vulnerability, if the seller reveals it before the sale . Seller runs away with the money, if the buyers pays in advance
.. Demonstrate . The Zero-day Market . 40/118 .. . Whoever controls the computing environment has an edge . Does the seller tampers with the computing environment? . Does the buyer records the working of the exploit and steal it?
... Any vulnerability claim can’t be ensured
..
... Enforce contracts
.. Exclusive rights to the buyer . The Zero-day Market . 44/118 .. . Grant exclusive rights, to receive the largest payoffs . What if the seller defects, selling the same zero-day to multiple parties? . This time are the buyers to lack a mean to protect themselves . Forcing to return the funds? . Difficulty to identify sellers, to attribute multiple transactions to the same supplier, and to enforce contracts helps the seller willing to betray
..
.. Proposed solutions . The Zero-day Market . 46/118 . Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting;
.. Proposed solutions . The Zero-day Market . 46/118 . Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting; . Resort to the use of trusted-third parties (e.g., escrow services), as crucial entities for enabling cooperation of market participants;
.. Proposed solutions . The Zero-day Market . 46/118 . Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting; . Resort to the use of trusted-third parties (e.g., escrow services), as crucial entities for enabling cooperation of market participants; . Build a reputation system (e.g., reputation score) as an instrument to establish trust relationships between distrustful players.
..
... PHEW!
.. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties?
.. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting?
.. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting? 3. Under which conditions a player can extort the opponent?
.. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting? 3. Under which conditions a player can extort the opponent? 4. Can cooperation be sustained also in fully anonymous settings?
.. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting? 3. Under which conditions a player can extort the opponent? 4. Can cooperation be sustained also in fully anonymous settings? 5. What about semi-anonymous settings?
... Which trading strategy to employ?
... Relevance . 51/118 Relevance
.. /me . Relevance . 52/118 At the intersection of so ware security and security so ware, exploring, and trying to contain, the space of unanticipated state.
.. Market failure . Relevance . 53/118 ...
.. Inability to self-correct . Relevance . 54/118 .. . So ware manufacturers will not forgo market shares . So ware users will not forgo features . Attackers will not forgo attacking tens of millions of vulnerable systems
.. Information Security Prediction Market . Relevance . 55/118 ..
.. Should I care? . Relevance . 56/118 1. More interconnected
.. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent
.. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent 3. Greater dynamic range of possible failure
.. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent 3. Greater dynamic range of possible failure 4. Vulnerability information is key to both offensive and defensive purposes
.. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent 3. Greater dynamic range of possible failure 4. Vulnerability information is key to both offensive and defensive purposes 5. Prominent role in modern-day intelligence, national security, and law enforcement operations
.. Nation-state actors . Relevance . 57/118 ..
.. LEAs . Relevance . 58/118 ..
.. Galileo . Relevance . 59/118 ..
.. Hack . Relevance . 60/118 ..
.. Vendors . Relevance . 61/118 ..
.. Where the results find application? . Relevance . 62/118 .. . Over-the-counter zero-day trading
.. Where the results find application? . Relevance . 62/118 .. . Over-the-counter zero-day trading . Boutique exploit providers offering zero-day vulnerabilities for a subscription fee
.. Where the results find application? . Relevance . 62/118 .. . Over-the-counter zero-day trading . Boutique exploit providers offering zero-day vulnerabilities for a subscription fee . Service models for vulnerability research
... The Zero-day Dilemma . 63/118 TheZero-dayDilemma
... The Bazaar
... The Maharaja’s Ultimatum
... The Shadow of the Future
.. Ultimatum Game . The Zero-day Dilemma . 67/118 .. . A game in economic experiments . Proposer: receives a sum of money and propose how to divide the sum between himself and another player . Responder: chooses to either accept or reject the proposal . If he accepts, the money is split according to the proposal . If he rejects, neither player receives any money
.. Prisoner’s Dilemma . The Zero-day Dilemma . 68/118 .. . Two purely “rational” individuals might not cooperate, even if it appears that it is in their best interest to do so . Two prisoners that commited a crime . If they both do not confess, they get a low punishment . If they both confess, they get a more severe punishment . If one confesses and the other does not, then the one that confesses gets a very low punishment and the other gets a very severe punishment
.. IPD . The Zero-day Dilemma . 69/118 The Iterated Prisoner’s Dilemma (IPD) is a repeated game, where the PD is the stage game. Agents play the PD game an indefinite number of times.
.. The 0-Day Dilemma . The Zero-day Dilemma . 70/118 ..
.. Submissive scenario . The Zero-day Dilemma . 71/118 .. . Traders are playing the standard PD . R > P implies that mutual cooperation is superior to mutual defection . T > R and P > S imply that defection is the dominant strategy for both agents . Or, defection is better than cooperation for one player, no matter how that player’s opponent may play
.. Adaptive scenario . The Zero-day Dilemma . 72/118 .. . Neither the buyer nor the seller have a dominant strategy, if we assume Z > S and the U < R . If the betryed seller has the ability to close alternative deals for the same exploit (i.e., 1-Day FUD, 1-Day private exploits), then defection would not be a dominant strategy anymore . The market nature plays a role . Today not a monopsony and weakly regulated. Tomorrow rules and regulations may emerge in this area (e.g., Wassenaar Arrangement) and may impact the market liquidity
.. MAD scenario . The Zero-day Dilemma . 73/118 .. . A variant of the standard PD, where the seller has the ability to negate the buyer the temptation to defect . Just make sure T approaches P . Hence, defection is not a dominant strategy for the buyer . If factors such as market liquidity, export/trade regulations, mean-time to close a deal prevent the Adaptive retaliation approach from being undertaken, then the seller should consider disclosing publicly the exploit or the vulnerability.
.. MAD scenario . The Zero-day Dilemma . 74/118 .. . This would not make herself worse off . The seller would reduce the buyer incentives to defect in the first place
.. FD & Brinkmanship . The Zero-day Dilemma . 75/118 .. . To this end, it is important for the 0-Day sellers to have an efficient mean for doing full-disclosure
.. FD & Brinkmanship . The Zero-day Dilemma . 75/118 .. . To this end, it is important for the 0-Day sellers to have an efficient mean for doing full-disclosure . Not for the sake of bragging rights anymore, but for modern-day brinkmanship
.. FD & Brinkmanship . The Zero-day Dilemma . 75/118 .. . To this end, it is important for the 0-Day sellers to have an efficient mean for doing full-disclosure . Not for the sake of bragging rights anymore, but for modern-day brinkmanship . As faster the disclosure of the vulnerability, as shorter the window of opportunity to the exploiter and the smaller the Residual payoff (V)
.. Fair share of troubles . The Zero-day Dilemma . 76/118 .. . Since July 2002 the Full-Disclosure list experienced a “fair share of legal troubles along the way.” . Posting on a mailing list may transalte in an OPSEC failure, if the anonymity of the submitter is not protected
.. WhistleDay or ZeroLeaks . The Zero-day Dilemma . 77/118 . A 0-Day disclosure platform . Researchers could use it for full-disclosure . Players in the Zero-day market could use to retaliate against buyers who defect . Insiders would turn to it to expose the secretive trade in intrusion and surveillance technologies . Dub it WhistleDay or ZeroLeaks, if you like
.. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting
.. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible
.. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible . If this is not the case, the rational outcome is the action profile of mutual defection
.. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible . If this is not the case, the rational outcome is the action profile of mutual defection . “We have to distrust each other. It’s our only defense against betrayal.” — Tennessee Williams
.. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible . If this is not the case, the rational outcome is the action profile of mutual defection . “We have to distrust each other. It’s our only defense against betrayal.” — Tennessee Williams . “The dilemma then is that mutual cooperation yields a better outcome than mutual defection but it is not the rational outcome because the choice to cooperate, at the individual level, is not rational from a self-interested point of view.”
.. Cooperation as an Equilibrium . The Zero-day Dilemma . 79/118 If no form of punishment can be undertaken by the seller, can the cooperative outcome still be sustained as an equilibrium?
.. Iterated 0-Day Dilemma . The Zero-day Dilemma . 80/118 . The Iterated 0-Day Dilemma (I0DD) is a repeated game, where the 0-Day Dilemma is the stage game. Agents play the 0-Day Dilemma game an indefinite number of times
.. Iterated 0-Day Dilemma . The Zero-day Dilemma . 80/118 . . The Iterated 0-Day Dilemma (I0DD) is a repeated game, where the 0-Day Dilemma is the stage game. Agents play the 0-Day Dilemma game an indefinite number of times Remark: Whenever the Submissive scenario applies, the I0DD reduces to the Iterated Prisoner’s Dilemma
.. Three settings . The Zero-day Dilemma . 81/118 . .. . Onymous: The traders know the identity of the party they are dealing with
.. Three settings . The Zero-day Dilemma . 81/118 .. . Onymous: The traders know the identity of the party they are dealing with . Anonymous: Trades takes place among strangers
.. Three settings . The Zero-day Dilemma . 81/118 .. . Onymous: The traders know the identity of the party they are dealing with . Anonymous: Trades takes place among strangers . Semi-anonymous: Either the buyer or the seller is anonymous
.. Cooperation in onymous economies . The Zero-day Dilemma . 82/118 .. Aumann, Robert (1959). “Acceptable points in general cooperative n-person games”. In Luce, R. D.; Tucker, A. W. Contributions to the Theory 23 of Games IV. Annals of Mathematics Study 40. Princeton NJ: Princeton University Press. pp. 287–324. MR 0104521.
.. William Press and Freeman Dyson . The Zero-day Dilemma . 83/118 ...
.. Sentient Player . The Zero-day Dilemma . 84/118 .. . Power granted to a sentient player . A player with a theory of mind . Who realize that her behavior can influence her opponents’ strategies
.. Zero Determinant (ZD) Strategies . The Zero-day Dilemma . 85/118 ...
.. Extortion . The Zero-day Dilemma . 86/118 .. If one trader is aware of ZD strategies, but the opponent is an evoutionary player then the former can choose to extort the latter
.. Evolutionary players . The Zero-day Dilemma . 87/118 .. A player is said to be evolutionary is she posses no theory of mind and instead simply seeks to adjust her strategy to maximize her own score in response to whatever the adversary is doing
.. Extortion strategies . The Zero-day Dilemma . 88/118 . Grant a disproportionate number of high payoffs to the extortionist . It is the victim’s best interest to cooperate with the extortionist, because she is able to increase her score by doing so . In so doing, she ends up increasing the extortionist’s score even more than her own . She will never catch up to the extortionist, and she will accede to her extortionist because it pays her to do so
.. An extortionist relation . The Zero-day Dilemma . 89/118 Sx − P = 3(Sy − P)
.. Extortionist strategy: Example . The Zero-day Dilemma . 90/118 .. . Let R = 3, T = 5, P = 1, S = 0 . Let the desired payoff relation be Sx − P = 3(Sy − P) . If we both cooperated last time, then I cooperate with probability 11/13 . If I cheated you last time (you cooperated and I defected), then I cooperate with probability 7/26 . If you cheated me last time (I cooperated and you defected), then I cooperate with probability 1/2 . If we both defected last time, I defect . On average over the long run, my score minus one will be thrice your score minus one
.. Press and Dyson . The Zero-day Dilemma . 91/118 ..
.. IPD == Ultimatum Game . The Zero-day Dilemma . 92/118 .. If both players are sentient, but only one is aware of ZD-Strategies, then the IPD reduces to the Ultimatum Game
.. IPD == Ultimatum Game . The Zero-day Dilemma . 93/118 .. . Let’s suppose both players are sentient . Let’s suppose the buyer only knows about ZD-strategies . The buyer tries to extort the seller . The seller eventually notice . The seller decide to sabotage the scores of both . This is an Ultimatum Game. The buyer proposes an unfair ultimatum. And the seller respond.
.. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy
.. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both
.. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy
.. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy . They agree to unilaterally set the other’s score to an agreed value (presumably the maximum possible)
.. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy . They agree to unilaterally set the other’s score to an agreed value (presumably the maximum possible) . Neither player can then improve her score by violating the strategy
.. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy . They agree to unilaterally set the other’s score to an agreed value (presumably the maximum possible) . Neither player can then improve her score by violating the strategy . Each is punished for any purely malicious violation
.. A generous relation . The Zero-day Dilemma . 95/118 Sx − R = 2(Sy − R)
.. Generous ZD-strategy: Example . The Zero-day Dilemma . 96/118 .. . Let R = 3, T = 5, P = 1, S = 0 . Let the desired payoff relation be Sx − R = 2(Sy − R) . If we both cooperated last time, then I cooperate . If I cheated you last time (you cooperated and I defected), then I cooperate with probability 8/10 . If you cheated me last time (I cooperated and you defected), then I cooperate with probability 3/10 . If we both defected last time, I cooperate with probability 2/10 . On average over the long run, my score minus three will be twice your score minus three
.. Under the assumption... . The Zero-day Dilemma . 97/118 .. . Ascribe past actions to the same market participants . Choose strategies according to the outcome of past interactions
.. Anonymous Black Market . The Zero-day Dilemma . 98/118 .. . Is cooperation possible in anonymous zero-day markets?
.. Anonymous Black Market . The Zero-day Dilemma . 98/118 .. . Is cooperation possible in anonymous zero-day markets? . Do you believe it is?
.. Anonymous Black Market . The Zero-day Dilemma . 98/118 .. . Is cooperation possible in anonymous zero-day markets? . Do you believe it is? . If yes, which institutions for monitoring and enforcement promote cooperation in this setting?
.. Cooperation among Strangers . The Zero-day Dilemma . 99/118 ..
.. Camera and Casari 1 . The Zero-day Dilemma . 100/118 .. . Cooperation is high and increases with experience
.. Camera and Casari 1 . The Zero-day Dilemma . 100/118 .. . Cooperation is high and increases with experience . Low degree of cooperation when subject see aggregate outcomes without observing identities (e.g., as might result from discussing trading experiences in anonymous fora)
.. Camera and Casari 1 . The Zero-day Dilemma . 100/118 .. . Cooperation is high and increases with experience . Low degree of cooperation when subject see aggregate outcomes without observing identities (e.g., as might result from discussing trading experiences in anonymous fora) . Costly personal punishment significantly promotes cooperation
.. Camera and Casari 2 . The Zero-day Dilemma . 101/118 .. . Subject were given the possibility to observe actions and outcomes in their game and to inflict, at a cost, a loss in the earnings of the defecting opponent
.. Camera and Casari 2 . The Zero-day Dilemma . 101/118 .. . Subject were given the possibility to observe actions and outcomes in their game and to inflict, at a cost, a loss in the earnings of the defecting opponent . Camera and Casari added a second stage in the one-shot game
.. Camera and Casari 2 . The Zero-day Dilemma . 101/118 .. . Subject were given the possibility to observe actions and outcomes in their game and to inflict, at a cost, a loss in the earnings of the defecting opponent . Camera and Casari added a second stage in the one-shot game . The retaliation stage resembles in full the Adaptive and MAD scenarios in the 0-Day Dilemma
.. Camera and Casari 3 . The Zero-day Dilemma . 102/118 .. . The player who obseverd the opponent defect sometimes employed personal punishment (i.e., in-match retaliation), while staying in cooperative mode in the following periods
.. Camera and Casari 3 . The Zero-day Dilemma . 102/118 .. . The player who obseverd the opponent defect sometimes employed personal punishment (i.e., in-match retaliation), while staying in cooperative mode in the following periods . Players show preference for in-match retaliation over the (equilibrium) informal retaliation
.. Camera and Casari 3 . The Zero-day Dilemma . 102/118 .. . The player who obseverd the opponent defect sometimes employed personal punishment (i.e., in-match retaliation), while staying in cooperative mode in the following periods . Players show preference for in-match retaliation over the (equilibrium) informal retaliation . Efficiency: defectors who had been punished by a cooperator were more likely to cooperate in the following periods (34.5% vs 24.1%)
.. Punishment as a Public Good . The Zero-day Dilemma . 103/118 .. . It significantly increases cooperation
.. Punishment as a Public Good . The Zero-day Dilemma . 103/118 .. . It significantly increases cooperation . The subject that benefit the most are cooperator who punish little or not at all
.. Hacking Team . The Zero-day Dilemma . 104/118 ..
.. Hacking Team leaks . The Zero-day Dilemma . 105/118 ..
.. Poll . The Zero-day Dilemma . 106/118 Was the COO’s intuition correct?
.. Poll . The Zero-day Dilemma . 107/118 Can Hacking Team trust anonymous 0-day sellers?
.. Poll . The Zero-day Dilemma . 108/118 If you were in their place, would you have trusted an anonymous seller with supplying an 0-day?
.. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant
.. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant . The latter can’t benefit from being sentient and is forced to choose her strategies as an evolutionary player would do
.. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant . The latter can’t benefit from being sentient and is forced to choose her strategies as an evolutionary player would do . If the anonymous party knows about the ZD-strategies, she can choose to extort the opponent
.. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant . The latter can’t benefit from being sentient and is forced to choose her strategies as an evolutionary player would do . If the anonymous party knows about the ZD-strategies, she can choose to extort the opponent . Hence, while cooperation can emerge in fully-anonymous markets, extortion can profilate in the semi-anonymous economies
.. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties
.. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties . Cooperation can be sustained even when traders are anonymous
.. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties . Cooperation can be sustained even when traders are anonymous . Punishment is an effective instrument to discourage traders from defecting
.. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties . Cooperation can be sustained even when traders are anonymous . Punishment is an effective instrument to discourage traders from defecting . It is possible to get extorted, if the adversary knows about ZD-Strategies and we simply seek to adjust our strategy to maximize our own profit
... Recommendations . 111/118 Recommendations
.. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity
.. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart
.. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation
.. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation 4. Let the seller supply the vulnerability first, if interested in a one-time deal
.. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation 4. Let the seller supply the vulnerability first, if interested in a one-time deal 5. Learn about Zero Determinant strategies, if playing in an onymous market
.. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation 4. Let the seller supply the vulnerability first, if interested in a one-time deal 5. Learn about Zero Determinant strategies, if playing in an onymous market 6. Grim trigger: forever defect, if you see defection while playing in an anonymous market and have no ability to punish the opponent
.. Experimental verification . Recommendations . 113/118 If interested, please be in touch
..
.. “ Though I am o en in the depths of misery, there is still calmness, pure harmony and music inside me. Vincent van Gogh.. ”
.. “ Though we are o en in the depths of insecurity, there is still calmness, pure harmony and music inside us. .. ”
.. THANK YOU
Q ?
... Backup . 119/118 Backup
.. BeeWise . Backup . 120/118 .. . BeeWise is the first prediction market for forecasting security events and trends . More specifically, it is a security-event futures exchange where participants trade contracts whose payoffs are tied to future events in information security, such as the discovery of a given so ware vulnerability, a security incident, or the diffusion of new malware
.. BeeWise . Backup . 120/118 .. . With a large enough number of people betting on the outcome of selected events, the prices of the contracts will be an approximate measure of the probability of the underlying events at any time. The ability to use market prices as forward-looking indicators of security properties will help in establishing information symmetry between buyers and sellers (ie., build a quality signal), and help security stakeholders to make better and more informed decisions, by telling mediocre security products from good ones

Recommended

The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...a001
 
0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...
0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...
0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...Positive Hack Days
 
Auscert20150daymarket
Auscert20150daymarketAuscert20150daymarket
Auscert20150daymarketDarren Pauli
 
Cme commoditymanual
Cme commoditymanualCme commoditymanual
Cme commoditymanualsaranammu
 
Auscert20150daymarket
Auscert20150daymarketAuscert20150daymarket
Auscert20150daymarketa001
 
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...a001
 
Binary options Trading Guide
Binary options Trading GuideBinary options Trading Guide
Binary options Trading GuideThomas Jan
 
Commodity Futures Trading For Beginners
Commodity Futures Trading For BeginnersCommodity Futures Trading For Beginners
Commodity Futures Trading For BeginnersJawad Hussain Juddy
 

Recommended

The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...a001
 
0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...
0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...
0daysmarketThe Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future...Positive Hack Days
 
Auscert20150daymarket
Auscert20150daymarketAuscert20150daymarket
Auscert20150daymarketDarren Pauli
 
Cme commoditymanual
Cme commoditymanualCme commoditymanual
Cme commoditymanualsaranammu
 
Auscert20150daymarket
Auscert20150daymarketAuscert20150daymarket
Auscert20150daymarketa001
 
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...a001
 
Binary options Trading Guide
Binary options Trading GuideBinary options Trading Guide
Binary options Trading GuideThomas Jan
 
Commodity Futures Trading For Beginners
Commodity Futures Trading For BeginnersCommodity Futures Trading For Beginners
Commodity Futures Trading For BeginnersJawad Hussain Juddy
 
Estimation of nifty spot price using put call parity (final)
Estimation of nifty spot price using put call parity (final)Estimation of nifty spot price using put call parity (final)
Estimation of nifty spot price using put call parity (final)Kushal Jain
 
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...Fas (Feisal) Mosleh
 
Why you keep losing money following trade ideas
Why you keep losing money following trade ideasWhy you keep losing money following trade ideas
Why you keep losing money following trade ideasMuhammad Waqas
 
“Commodity Treading & Future Option Maker”
“Commodity Treading & Future Option Maker”“Commodity Treading & Future Option Maker”
“Commodity Treading & Future Option Maker”Vatsal Patel
 
cash future forward market
cash future forward marketcash future forward market
cash future forward marketTanvi Pagare
 
TAI LIEU NGHIEN CUU VSA
TAI LIEU NGHIEN CUU VSA TAI LIEU NGHIEN CUU VSA
TAI LIEU NGHIEN CUU VSA HANOI BROKER ANALYST
 
Linowes_Summary_of_Crossing_the_Chasm.pdf
Linowes_Summary_of_Crossing_the_Chasm.pdfLinowes_Summary_of_Crossing_the_Chasm.pdf
Linowes_Summary_of_Crossing_the_Chasm.pdfssuserc54511
 
The Simple Truth Behind Managed Futures
The Simple Truth Behind Managed FuturesThe Simple Truth Behind Managed Futures
The Simple Truth Behind Managed Futuresbzinchenko
 
Master the market.pdf
Master the market.pdfMaster the market.pdf
Master the market.pdfDineshKumar859790
 
mtm_251058.pdf
mtm_251058.pdfmtm_251058.pdf
mtm_251058.pdfDineshKumar859790
 
Forex secrets
Forex secrets Forex secrets
Forex secrets EaswaranDHARANIKUMAR
 
Why I Only Follow Those Who Have Skin In The Game
Why I Only Follow Those Who Have Skin In The GameWhy I Only Follow Those Who Have Skin In The Game
Why I Only Follow Those Who Have Skin In The GameJoshua Belanger
 
Summary Crossing The Chasm
Summary Crossing The ChasmSummary Crossing The Chasm
Summary Crossing The ChasmWouter de Heij
 
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0Helen Wilcox
 
A MODERN MARKET MAKER.pdf
A MODERN MARKET MAKER.pdfA MODERN MARKET MAKER.pdf
A MODERN MARKET MAKER.pdfJessica Navarro
 
D 00 derivatives introduction
D 00 derivatives introductionD 00 derivatives introduction
D 00 derivatives introductionAkhilesh Agarwal
 
The Zero Sum Game
The Zero Sum GameThe Zero Sum Game
The Zero Sum GameKristoph Matthews
 
Trade binary options
Trade binary optionsTrade binary options
Trade binary optionsBinaryOptionsGain
 
2 Derivatives In India.pdf
2 Derivatives In India.pdf2 Derivatives In India.pdf
2 Derivatives In India.pdfHasratAli22
 
Financial-Derivatives.pdf
Financial-Derivatives.pdfFinancial-Derivatives.pdf
Financial-Derivatives.pdfswati23502
 
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...a001
 
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
The Vulnerability Supply Chain - HackIT Ukraine 2016, KharkivThe Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiva001
 

More Related Content

Similar to The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion and Cooperation in the Zero-day Market - CODE BLUE 2015, Tokyo

Estimation of nifty spot price using put call parity (final)
Estimation of nifty spot price using put call parity (final)Estimation of nifty spot price using put call parity (final)
Estimation of nifty spot price using put call parity (final)Kushal Jain
 
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...Fas (Feisal) Mosleh
 
Why you keep losing money following trade ideas
Why you keep losing money following trade ideasWhy you keep losing money following trade ideas
Why you keep losing money following trade ideasMuhammad Waqas
 
“Commodity Treading & Future Option Maker”
“Commodity Treading & Future Option Maker”“Commodity Treading & Future Option Maker”
“Commodity Treading & Future Option Maker”Vatsal Patel
 
cash future forward market
cash future forward marketcash future forward market
cash future forward marketTanvi Pagare
 
Linowes_Summary_of_Crossing_the_Chasm.pdf
Linowes_Summary_of_Crossing_the_Chasm.pdfLinowes_Summary_of_Crossing_the_Chasm.pdf
Linowes_Summary_of_Crossing_the_Chasm.pdfssuserc54511
 
The Simple Truth Behind Managed Futures
The Simple Truth Behind Managed FuturesThe Simple Truth Behind Managed Futures
The Simple Truth Behind Managed Futuresbzinchenko
 
Why I Only Follow Those Who Have Skin In The Game
Why I Only Follow Those Who Have Skin In The GameWhy I Only Follow Those Who Have Skin In The Game
Why I Only Follow Those Who Have Skin In The GameJoshua Belanger
 
Summary Crossing The Chasm
Summary Crossing The ChasmSummary Crossing The Chasm
Summary Crossing The ChasmWouter de Heij
 
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0Helen Wilcox
 
A MODERN MARKET MAKER.pdf
A MODERN MARKET MAKER.pdfA MODERN MARKET MAKER.pdf
A MODERN MARKET MAKER.pdfJessica Navarro
 
D 00 derivatives introduction
D 00 derivatives introductionD 00 derivatives introduction
D 00 derivatives introductionAkhilesh Agarwal
 
2 Derivatives In India.pdf
2 Derivatives In India.pdf2 Derivatives In India.pdf
2 Derivatives In India.pdfHasratAli22
 
Financial-Derivatives.pdf
Financial-Derivatives.pdfFinancial-Derivatives.pdf
Financial-Derivatives.pdfswati23502
 

Similar to The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion and Cooperation in the Zero-day Market - CODE BLUE 2015, Tokyo (20)

Estimation of nifty spot price using put call parity (final)
Estimation of nifty spot price using put call parity (final)Estimation of nifty spot price using put call parity (final)
Estimation of nifty spot price using put call parity (final)
 
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
Syndicated Patent Deals = Supercharging the buying and selling of patents by ...
 
Why you keep losing money following trade ideas
Why you keep losing money following trade ideasWhy you keep losing money following trade ideas
Why you keep losing money following trade ideas
 
“Commodity Treading & Future Option Maker”
“Commodity Treading & Future Option Maker”“Commodity Treading & Future Option Maker”
“Commodity Treading & Future Option Maker”
 
cash future forward market
cash future forward marketcash future forward market
cash future forward market
 
TAI LIEU NGHIEN CUU VSA
TAI LIEU NGHIEN CUU VSA TAI LIEU NGHIEN CUU VSA
TAI LIEU NGHIEN CUU VSA
 
Linowes_Summary_of_Crossing_the_Chasm.pdf
Linowes_Summary_of_Crossing_the_Chasm.pdfLinowes_Summary_of_Crossing_the_Chasm.pdf
Linowes_Summary_of_Crossing_the_Chasm.pdf
 
The Simple Truth Behind Managed Futures
The Simple Truth Behind Managed FuturesThe Simple Truth Behind Managed Futures
The Simple Truth Behind Managed Futures
 
Master the market.pdf
Master the market.pdfMaster the market.pdf
Master the market.pdf
 
mtm_251058.pdf
mtm_251058.pdfmtm_251058.pdf
mtm_251058.pdf
 
Forex secrets
Forex secrets Forex secrets
Forex secrets
 
Why I Only Follow Those Who Have Skin In The Game
Why I Only Follow Those Who Have Skin In The GameWhy I Only Follow Those Who Have Skin In The Game
Why I Only Follow Those Who Have Skin In The Game
 
Summary Crossing The Chasm
Summary Crossing The ChasmSummary Crossing The Chasm
Summary Crossing The Chasm
 
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
The good the bad and the ugly_ Dirty tricks in Negotiation_2013 v5.0
 
A MODERN MARKET MAKER.pdf
A MODERN MARKET MAKER.pdfA MODERN MARKET MAKER.pdf
A MODERN MARKET MAKER.pdf
 
D 00 derivatives introduction
D 00 derivatives introductionD 00 derivatives introduction
D 00 derivatives introduction
 
The Zero Sum Game
The Zero Sum GameThe Zero Sum Game
The Zero Sum Game
 
Trade binary options
Trade binary optionsTrade binary options
Trade binary options
 
2 Derivatives In India.pdf
2 Derivatives In India.pdf2 Derivatives In India.pdf
2 Derivatives In India.pdf
 
Financial-Derivatives.pdf
Financial-Derivatives.pdfFinancial-Derivatives.pdf
Financial-Derivatives.pdf
 

More from a001

Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...a001
 
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
The Vulnerability Supply Chain - HackIT Ukraine 2016, KharkivThe Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiva001
 
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...a001
 
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...a001
 
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)a001
 
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
illusoryTLS: Nobody But Us Impersonate, Tamper, ExploitillusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploita001
 
illusoryTLS: Impersonate, Tamper, and Exploit
illusoryTLS: Impersonate, Tamper, and ExploitillusoryTLS: Impersonate, Tamper, and Exploit
illusoryTLS: Impersonate, Tamper, and Exploita001
 
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...a001
 

More from a001 (8)

Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
 
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
The Vulnerability Supply Chain - HackIT Ukraine 2016, KharkivThe Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
 
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
 
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
 
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)
 
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
illusoryTLS: Nobody But Us Impersonate, Tamper, ExploitillusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
 
illusoryTLS: Impersonate, Tamper, and Exploit
illusoryTLS: Impersonate, Tamper, and ExploitillusoryTLS: Impersonate, Tamper, and Exploit
illusoryTLS: Impersonate, Tamper, and Exploit
 
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...
 

Recently uploaded

CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?Antenna Manufacturer Coco
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessPixlogix Infotech
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 

Recently uploaded (20)

CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 

The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion and Cooperation in the Zero-day Market - CODE BLUE 2015, Tokyo

  • 1. ... The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: . Extortion and Cooperation in the Zero-day Market . Alfonso De Gregorio . Founder, BeeWise .. CODE BLUE, Tokyo, October 28th-29th, 2015
  • 3. .. Agenda . 1. The Zero-day Market A hairy business 2. Relevance Should I care? 3. The Zero-day Dilemma Extortion and Cooperation in the Zero-day Market 4. Recommendations to Zero-day traders How to maximize the payoff?
  • 5. ..
  • 6. ..
  • 7. ..
  • 8. ..
  • 9. ..
  • 10. ..
  • 11. ..
  • 13. ..
  • 14. ..
  • 15. ..
  • 16. ..
  • 17. ..
  • 18. ..
  • 20. ..
  • 21. ..
  • 22. ..
  • 23. ..
  • 24. ..
  • 25. ..
  • 26. ..
  • 27. ..
  • 28. ..
  • 29. ..
  • 30. ..
  • 31. .. Inherent obstacles . The Zero-day Market . 28/118 1. Time-sensitiveness of traded commodities 2. Trust 3. Price fairness 4. Possibility of defection
  • 32. .. A hairy business . The Zero-day Market . 29/118 ..
  • 33. .. The Legitimate Vulnerability Market . The Zero-day Market . 30/118 ..
  • 34. .. Time-sensitive commodity . The Zero-day Market . 31/118 .. . Valuable only when they are not widely known . Value drops to zero, as soon as the vulnerability is disclosed or a mitigation is released . Transactions should complete in short times . Discretion required
  • 35. ... Every day can be the last day for a 0-day sale
  • 36. .. Trust . The Zero-day Market . 33/118 .. . No centralized way to locate its players . Finding buyers and sellers is time-consuming . Unfamiliar business partners . Hard to verify intentions
  • 37. ... Oh, grandmother, what a horribly big mouth you have!
  • 38. .. Transparency and price fairness . The Zero-day Market . 35/118 .. . Adoption levels of the vulnerable component . Presence within a given attack surface . Level of authentication required to exploit it . Difficulty of independent rediscovery . Exploit reliability
  • 40. .. Tension . The Zero-day Market . 37/118 .. . Disclose and lose? . Proving without disclosing . Two approaches: reveal or demonstrate . Both undesirable
  • 41. ..
  • 42. .. Reveal . The Zero-day Market . 39/118 .. . Whoever moves first and lose your asset . Buyer steals the vulnerability, if the seller reveals it before the sale . Seller runs away with the money, if the buyers pays in advance
  • 43. .. Demonstrate . The Zero-day Market . 40/118 .. . Whoever controls the computing environment has an edge . Does the seller tampers with the computing environment? . Does the buyer records the working of the exploit and steal it?
  • 44. ... Any vulnerability claim can’t be ensured
  • 45. ..
  • 47. .. Exclusive rights to the buyer . The Zero-day Market . 44/118 .. . Grant exclusive rights, to receive the largest payoffs . What if the seller defects, selling the same zero-day to multiple parties? . This time are the buyers to lack a mean to protect themselves . Forcing to return the funds? . Difficulty to identify sellers, to attribute multiple transactions to the same supplier, and to enforce contracts helps the seller willing to betray
  • 48. ..
  • 49. .. Proposed solutions . The Zero-day Market . 46/118 . Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting;
  • 50. .. Proposed solutions . The Zero-day Market . 46/118 . Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting; . Resort to the use of trusted-third parties (e.g., escrow services), as crucial entities for enabling cooperation of market participants;
  • 51. .. Proposed solutions . The Zero-day Market . 46/118 . Use punishment (i.e., public disclosure of vulnerabilities) to discourage a buyer from defecting; . Resort to the use of trusted-third parties (e.g., escrow services), as crucial entities for enabling cooperation of market participants; . Build a reputation system (e.g., reputation score) as an instrument to establish trust relationships between distrustful players.
  • 52. ..
  • 54. .. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties?
  • 55. .. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting?
  • 56. .. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting? 3. Under which conditions a player can extort the opponent?
  • 57. .. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting? 3. Under which conditions a player can extort the opponent? 4. Can cooperation be sustained also in fully anonymous settings?
  • 58. .. Motivating questions . The Zero-day Market . 49/118 1. Can the zero-day market achieve cooperation and efficiency even in absence of trusted-third parties? 2. Can punishment discourage the buyer from defecting? 3. Under which conditions a player can extort the opponent? 4. Can cooperation be sustained also in fully anonymous settings? 5. What about semi-anonymous settings?
  • 61. .. /me . Relevance . 52/118 At the intersection of so ware security and security so ware, exploring, and trying to contain, the space of unanticipated state.
  • 63. .. Inability to self-correct . Relevance . 54/118 .. . So ware manufacturers will not forgo market shares . So ware users will not forgo features . Attackers will not forgo attacking tens of millions of vulnerable systems
  • 66. .. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent
  • 67. .. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent 3. Greater dynamic range of possible failure
  • 68. .. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent 3. Greater dynamic range of possible failure 4. Vulnerability information is key to both offensive and defensive purposes
  • 69. .. Should I care? . Relevance . 56/118 1. More interconnected 2. More interdependent 3. Greater dynamic range of possible failure 4. Vulnerability information is key to both offensive and defensive purposes 5. Prominent role in modern-day intelligence, national security, and law enforcement operations
  • 75. .. Where the results find application? . Relevance . 62/118 .. . Over-the-counter zero-day trading
  • 76. .. Where the results find application? . Relevance . 62/118 .. . Over-the-counter zero-day trading . Boutique exploit providers offering zero-day vulnerabilities for a subscription fee
  • 77. .. Where the results find application? . Relevance . 62/118 .. . Over-the-counter zero-day trading . Boutique exploit providers offering zero-day vulnerabilities for a subscription fee . Service models for vulnerability research
  • 81. ... The Shadow of the Future
  • 82. .. Ultimatum Game . The Zero-day Dilemma . 67/118 .. . A game in economic experiments . Proposer: receives a sum of money and propose how to divide the sum between himself and another player . Responder: chooses to either accept or reject the proposal . If he accepts, the money is split according to the proposal . If he rejects, neither player receives any money
  • 83. .. Prisoner’s Dilemma . The Zero-day Dilemma . 68/118 .. . Two purely “rational” individuals might not cooperate, even if it appears that it is in their best interest to do so . Two prisoners that commited a crime . If they both do not confess, they get a low punishment . If they both confess, they get a more severe punishment . If one confesses and the other does not, then the one that confesses gets a very low punishment and the other gets a very severe punishment
  • 84. .. IPD . The Zero-day Dilemma . 69/118 The Iterated Prisoner’s Dilemma (IPD) is a repeated game, where the PD is the stage game. Agents play the PD game an indefinite number of times.
  • 85. .. The 0-Day Dilemma . The Zero-day Dilemma . 70/118 ..
  • 86. .. Submissive scenario . The Zero-day Dilemma . 71/118 .. . Traders are playing the standard PD . R > P implies that mutual cooperation is superior to mutual defection . T > R and P > S imply that defection is the dominant strategy for both agents . Or, defection is better than cooperation for one player, no matter how that player’s opponent may play
  • 87. .. Adaptive scenario . The Zero-day Dilemma . 72/118 .. . Neither the buyer nor the seller have a dominant strategy, if we assume Z > S and the U < R . If the betryed seller has the ability to close alternative deals for the same exploit (i.e., 1-Day FUD, 1-Day private exploits), then defection would not be a dominant strategy anymore . The market nature plays a role . Today not a monopsony and weakly regulated. Tomorrow rules and regulations may emerge in this area (e.g., Wassenaar Arrangement) and may impact the market liquidity
  • 88. .. MAD scenario . The Zero-day Dilemma . 73/118 .. . A variant of the standard PD, where the seller has the ability to negate the buyer the temptation to defect . Just make sure T approaches P . Hence, defection is not a dominant strategy for the buyer . If factors such as market liquidity, export/trade regulations, mean-time to close a deal prevent the Adaptive retaliation approach from being undertaken, then the seller should consider disclosing publicly the exploit or the vulnerability.
  • 89. .. MAD scenario . The Zero-day Dilemma . 74/118 .. . This would not make herself worse off . The seller would reduce the buyer incentives to defect in the first place
  • 90. .. FD & Brinkmanship . The Zero-day Dilemma . 75/118 .. . To this end, it is important for the 0-Day sellers to have an efficient mean for doing full-disclosure
  • 91. .. FD & Brinkmanship . The Zero-day Dilemma . 75/118 .. . To this end, it is important for the 0-Day sellers to have an efficient mean for doing full-disclosure . Not for the sake of bragging rights anymore, but for modern-day brinkmanship
  • 92. .. FD & Brinkmanship . The Zero-day Dilemma . 75/118 .. . To this end, it is important for the 0-Day sellers to have an efficient mean for doing full-disclosure . Not for the sake of bragging rights anymore, but for modern-day brinkmanship . As faster the disclosure of the vulnerability, as shorter the window of opportunity to the exploiter and the smaller the Residual payoff (V)
  • 93. .. Fair share of troubles . The Zero-day Dilemma . 76/118 .. . Since July 2002 the Full-Disclosure list experienced a “fair share of legal troubles along the way.” . Posting on a mailing list may transalte in an OPSEC failure, if the anonymity of the submitter is not protected
  • 94. .. WhistleDay or ZeroLeaks . The Zero-day Dilemma . 77/118 . A 0-Day disclosure platform . Researchers could use it for full-disclosure . Players in the Zero-day market could use to retaliate against buyers who defect . Insiders would turn to it to expose the secretive trade in intrusion and surveillance technologies . Dub it WhistleDay or ZeroLeaks, if you like
  • 95. .. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting
  • 96. .. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible
  • 97. .. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible . If this is not the case, the rational outcome is the action profile of mutual defection
  • 98. .. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible . If this is not the case, the rational outcome is the action profile of mutual defection . “We have to distrust each other. It’s our only defense against betrayal.” — Tennessee Williams
  • 99. .. Cooperation is possible . The Zero-day Dilemma . 78/118 . As long as the seller doesn’t play in the Submissive scenario, the buyer is not better off defecting . In the one-shot sequential 0-Day Dilemma cooperation is possible . If this is not the case, the rational outcome is the action profile of mutual defection . “We have to distrust each other. It’s our only defense against betrayal.” — Tennessee Williams . “The dilemma then is that mutual cooperation yields a better outcome than mutual defection but it is not the rational outcome because the choice to cooperate, at the individual level, is not rational from a self-interested point of view.”
  • 100. .. Cooperation as an Equilibrium . The Zero-day Dilemma . 79/118 If no form of punishment can be undertaken by the seller, can the cooperative outcome still be sustained as an equilibrium?
  • 101. .. Iterated 0-Day Dilemma . The Zero-day Dilemma . 80/118 . The Iterated 0-Day Dilemma (I0DD) is a repeated game, where the 0-Day Dilemma is the stage game. Agents play the 0-Day Dilemma game an indefinite number of times
  • 102. .. Iterated 0-Day Dilemma . The Zero-day Dilemma . 80/118 . . The Iterated 0-Day Dilemma (I0DD) is a repeated game, where the 0-Day Dilemma is the stage game. Agents play the 0-Day Dilemma game an indefinite number of times Remark: Whenever the Submissive scenario applies, the I0DD reduces to the Iterated Prisoner’s Dilemma
  • 103. .. Three settings . The Zero-day Dilemma . 81/118 . .. . Onymous: The traders know the identity of the party they are dealing with
  • 104. .. Three settings . The Zero-day Dilemma . 81/118 .. . Onymous: The traders know the identity of the party they are dealing with . Anonymous: Trades takes place among strangers
  • 105. .. Three settings . The Zero-day Dilemma . 81/118 .. . Onymous: The traders know the identity of the party they are dealing with . Anonymous: Trades takes place among strangers . Semi-anonymous: Either the buyer or the seller is anonymous
  • 106. .. Cooperation in onymous economies . The Zero-day Dilemma . 82/118 .. Aumann, Robert (1959). “Acceptable points in general cooperative n-person games”. In Luce, R. D.; Tucker, A. W. Contributions to the Theory 23 of Games IV. Annals of Mathematics Study 40. Princeton NJ: Princeton University Press. pp. 287–324. MR 0104521.
  • 107. .. William Press and Freeman Dyson . The Zero-day Dilemma . 83/118 ...
  • 108. .. Sentient Player . The Zero-day Dilemma . 84/118 .. . Power granted to a sentient player . A player with a theory of mind . Who realize that her behavior can influence her opponents’ strategies
  • 109. .. Zero Determinant (ZD) Strategies . The Zero-day Dilemma . 85/118 ...
  • 110. .. Extortion . The Zero-day Dilemma . 86/118 .. If one trader is aware of ZD strategies, but the opponent is an evoutionary player then the former can choose to extort the latter
  • 111. .. Evolutionary players . The Zero-day Dilemma . 87/118 .. A player is said to be evolutionary is she posses no theory of mind and instead simply seeks to adjust her strategy to maximize her own score in response to whatever the adversary is doing
  • 112. .. Extortion strategies . The Zero-day Dilemma . 88/118 . Grant a disproportionate number of high payoffs to the extortionist . It is the victim’s best interest to cooperate with the extortionist, because she is able to increase her score by doing so . In so doing, she ends up increasing the extortionist’s score even more than her own . She will never catch up to the extortionist, and she will accede to her extortionist because it pays her to do so
  • 113. .. An extortionist relation . The Zero-day Dilemma . 89/118 Sx − P = 3(Sy − P)
  • 114. .. Extortionist strategy: Example . The Zero-day Dilemma . 90/118 .. . Let R = 3, T = 5, P = 1, S = 0 . Let the desired payoff relation be Sx − P = 3(Sy − P) . If we both cooperated last time, then I cooperate with probability 11/13 . If I cheated you last time (you cooperated and I defected), then I cooperate with probability 7/26 . If you cheated me last time (I cooperated and you defected), then I cooperate with probability 1/2 . If we both defected last time, I defect . On average over the long run, my score minus one will be thrice your score minus one
  • 115. .. Press and Dyson . The Zero-day Dilemma . 91/118 ..
  • 116. .. IPD == Ultimatum Game . The Zero-day Dilemma . 92/118 .. If both players are sentient, but only one is aware of ZD-Strategies, then the IPD reduces to the Ultimatum Game
  • 117. .. IPD == Ultimatum Game . The Zero-day Dilemma . 93/118 .. . Let’s suppose both players are sentient . Let’s suppose the buyer only knows about ZD-strategies . The buyer tries to extort the seller . The seller eventually notice . The seller decide to sabotage the scores of both . This is an Ultimatum Game. The buyer proposes an unfair ultimatum. And the seller respond.
  • 118. .. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy
  • 119. .. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both
  • 120. .. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy
  • 121. .. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy . They agree to unilaterally set the other’s score to an agreed value (presumably the maximum possible)
  • 122. .. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy . They agree to unilaterally set the other’s score to an agreed value (presumably the maximum possible) . Neither player can then improve her score by violating the strategy
  • 123. .. Generous ZD-Strategies . The Zero-day Dilemma . 94/118 .. . If both players are sentient and witting of ZD-Strategies, then they can agree on playing a Generous ZD-Strategy . In fact any tentative to extort the opponent would result in a low payoff for both . It is rational to agree on a fair cooperation strategy . They agree to unilaterally set the other’s score to an agreed value (presumably the maximum possible) . Neither player can then improve her score by violating the strategy . Each is punished for any purely malicious violation
  • 124. .. A generous relation . The Zero-day Dilemma . 95/118 Sx − R = 2(Sy − R)
  • 125. .. Generous ZD-strategy: Example . The Zero-day Dilemma . 96/118 .. . Let R = 3, T = 5, P = 1, S = 0 . Let the desired payoff relation be Sx − R = 2(Sy − R) . If we both cooperated last time, then I cooperate . If I cheated you last time (you cooperated and I defected), then I cooperate with probability 8/10 . If you cheated me last time (I cooperated and you defected), then I cooperate with probability 3/10 . If we both defected last time, I cooperate with probability 2/10 . On average over the long run, my score minus three will be twice your score minus three
  • 126. .. Under the assumption... . The Zero-day Dilemma . 97/118 .. . Ascribe past actions to the same market participants . Choose strategies according to the outcome of past interactions
  • 127. .. Anonymous Black Market . The Zero-day Dilemma . 98/118 .. . Is cooperation possible in anonymous zero-day markets?
  • 128. .. Anonymous Black Market . The Zero-day Dilemma . 98/118 .. . Is cooperation possible in anonymous zero-day markets? . Do you believe it is?
  • 129. .. Anonymous Black Market . The Zero-day Dilemma . 98/118 .. . Is cooperation possible in anonymous zero-day markets? . Do you believe it is? . If yes, which institutions for monitoring and enforcement promote cooperation in this setting?
  • 130. .. Cooperation among Strangers . The Zero-day Dilemma . 99/118 ..
  • 131. .. Camera and Casari 1 . The Zero-day Dilemma . 100/118 .. . Cooperation is high and increases with experience
  • 132. .. Camera and Casari 1 . The Zero-day Dilemma . 100/118 .. . Cooperation is high and increases with experience . Low degree of cooperation when subject see aggregate outcomes without observing identities (e.g., as might result from discussing trading experiences in anonymous fora)
  • 133. .. Camera and Casari 1 . The Zero-day Dilemma . 100/118 .. . Cooperation is high and increases with experience . Low degree of cooperation when subject see aggregate outcomes without observing identities (e.g., as might result from discussing trading experiences in anonymous fora) . Costly personal punishment significantly promotes cooperation
  • 134. .. Camera and Casari 2 . The Zero-day Dilemma . 101/118 .. . Subject were given the possibility to observe actions and outcomes in their game and to inflict, at a cost, a loss in the earnings of the defecting opponent
  • 135. .. Camera and Casari 2 . The Zero-day Dilemma . 101/118 .. . Subject were given the possibility to observe actions and outcomes in their game and to inflict, at a cost, a loss in the earnings of the defecting opponent . Camera and Casari added a second stage in the one-shot game
  • 136. .. Camera and Casari 2 . The Zero-day Dilemma . 101/118 .. . Subject were given the possibility to observe actions and outcomes in their game and to inflict, at a cost, a loss in the earnings of the defecting opponent . Camera and Casari added a second stage in the one-shot game . The retaliation stage resembles in full the Adaptive and MAD scenarios in the 0-Day Dilemma
  • 137. .. Camera and Casari 3 . The Zero-day Dilemma . 102/118 .. . The player who obseverd the opponent defect sometimes employed personal punishment (i.e., in-match retaliation), while staying in cooperative mode in the following periods
  • 138. .. Camera and Casari 3 . The Zero-day Dilemma . 102/118 .. . The player who obseverd the opponent defect sometimes employed personal punishment (i.e., in-match retaliation), while staying in cooperative mode in the following periods . Players show preference for in-match retaliation over the (equilibrium) informal retaliation
  • 139. .. Camera and Casari 3 . The Zero-day Dilemma . 102/118 .. . The player who obseverd the opponent defect sometimes employed personal punishment (i.e., in-match retaliation), while staying in cooperative mode in the following periods . Players show preference for in-match retaliation over the (equilibrium) informal retaliation . Efficiency: defectors who had been punished by a cooperator were more likely to cooperate in the following periods (34.5% vs 24.1%)
  • 140. .. Punishment as a Public Good . The Zero-day Dilemma . 103/118 .. . It significantly increases cooperation
  • 141. .. Punishment as a Public Good . The Zero-day Dilemma . 103/118 .. . It significantly increases cooperation . The subject that benefit the most are cooperator who punish little or not at all
  • 142. .. Hacking Team . The Zero-day Dilemma . 104/118 ..
  • 143. .. Hacking Team leaks . The Zero-day Dilemma . 105/118 ..
  • 144. .. Poll . The Zero-day Dilemma . 106/118 Was the COO’s intuition correct?
  • 145. .. Poll . The Zero-day Dilemma . 107/118 Can Hacking Team trust anonymous 0-day sellers?
  • 146. .. Poll . The Zero-day Dilemma . 108/118 If you were in their place, would you have trusted an anonymous seller with supplying an 0-day?
  • 147. .. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant
  • 148. .. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant . The latter can’t benefit from being sentient and is forced to choose her strategies as an evolutionary player would do
  • 149. .. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant . The latter can’t benefit from being sentient and is forced to choose her strategies as an evolutionary player would do . If the anonymous party knows about the ZD-strategies, she can choose to extort the opponent
  • 150. .. Semi-anonymous Zero-day markets . The Zero-day Dilemma . 109/118 .. . If only one party is anonymous, the onymous counterpart has not ability to know if she already had any deals with the same participant . The latter can’t benefit from being sentient and is forced to choose her strategies as an evolutionary player would do . If the anonymous party knows about the ZD-strategies, she can choose to extort the opponent . Hence, while cooperation can emerge in fully-anonymous markets, extortion can profilate in the semi-anonymous economies
  • 151. .. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties
  • 152. .. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties . Cooperation can be sustained even when traders are anonymous
  • 153. .. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties . Cooperation can be sustained even when traders are anonymous . Punishment is an effective instrument to discourage traders from defecting
  • 154. .. To sum up . The Zero-day Dilemma . 110/118 . Zero-day markets can achieve cooperation even in absence of trusted-third parties . Cooperation can be sustained even when traders are anonymous . Punishment is an effective instrument to discourage traders from defecting . It is possible to get extorted, if the adversary knows about ZD-Strategies and we simply seek to adjust our strategy to maximize our own profit
  • 156. .. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity
  • 157. .. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart
  • 158. .. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation
  • 159. .. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation 4. Let the seller supply the vulnerability first, if interested in a one-time deal
  • 160. .. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation 4. Let the seller supply the vulnerability first, if interested in a one-time deal 5. Learn about Zero Determinant strategies, if playing in an onymous market
  • 161. .. Recommendations . Recommendations . 112/118 1. Do not deal with anonymous traders, if you cannot ensure your own anonymity 2. Discourage defection by practicing brinkmanship or casting the shadow of the future in every decision of your counterpart 3. Respond: Consider punishing defection to promote cooperation 4. Let the seller supply the vulnerability first, if interested in a one-time deal 5. Learn about Zero Determinant strategies, if playing in an onymous market 6. Grim trigger: forever defect, if you see defection while playing in an anonymous market and have no ability to punish the opponent
  • 163. ..
  • 164. .. “ Though I am o en in the depths of misery, there is still calmness, pure harmony and music inside me. Vincent van Gogh.. ”
  • 165. .. “ Though we are o en in the depths of insecurity, there is still calmness, pure harmony and music inside us. .. ”
  • 167. Q ?
  • 169. .. BeeWise . Backup . 120/118 .. . BeeWise is the first prediction market for forecasting security events and trends . More specifically, it is a security-event futures exchange where participants trade contracts whose payoffs are tied to future events in information security, such as the discovery of a given so ware vulnerability, a security incident, or the diffusion of new malware
  • 170. .. BeeWise . Backup . 120/118 .. . With a large enough number of people betting on the outcome of selected events, the prices of the contracts will be an approximate measure of the probability of the underlying events at any time. The ability to use market prices as forward-looking indicators of security properties will help in establishing information symmetry between buyers and sellers (ie., build a quality signal), and help security stakeholders to make better and more informed decisions, by telling mediocre security products from good ones