{"id":"https://openalex.org/W4287851288","doi":"https://doi.org/10.1109/spw54247.2022.9833895","title":"Ares: A System-Oriented Wargame Framework for Adversarial ML","display_name":"Ares: A System-Oriented Wargame Framework for Adversarial ML","publication_year":2022,"publication_date":"2022-05-01","ids":{"openalex":"https://openalex.org/W4287851288","doi":"https://doi.org/10.1109/spw54247.2022.9833895"},"language":"en","primary_location":{"id":"doi:10.1109/spw54247.2022.9833895","is_oa":false,"landing_page_url":"https://doi.org/10.1109/spw54247.2022.9833895","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE Security and Privacy Workshops (SPW)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5091511008","display_name":"Farhan Ahmed","orcid":"https://orcid.org/0000-0002-1147-8347"},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Farhan Ahmed","raw_affiliation_strings":["Stony Brook University"],"affiliations":[{"raw_affiliation_string":"Stony Brook University","institution_ids":["https://openalex.org/I59553526"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Pratik Vaishnavi","orcid":null},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Pratik Vaishnavi","raw_affiliation_strings":["Stony Brook University"],"affiliations":[{"raw_affiliation_string":"Stony Brook University","institution_ids":["https://openalex.org/I59553526"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052581946","display_name":"Kevin Eykholt","orcid":"https://orcid.org/0000-0002-7040-1657"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Kevin Eykholt","raw_affiliation_strings":["IBM Research"],"affiliations":[{"raw_affiliation_string":"IBM Research","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5021423602","display_name":"Amir Rahmati","orcid":"https://orcid.org/0000-0001-7361-1898"},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Amir Rahmati","raw_affiliation_strings":["Stony Brook University"],"affiliations":[{"raw_affiliation_string":"Stony Brook University","institution_ids":["https://openalex.org/I59553526"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5091511008"],"corresponding_institution_ids":["https://openalex.org/I59553526"],"apc_list":null,"apc_paid":null,"fwci":0.9715,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.79578835,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"73","last_page":"79"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9922999739646912,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9628999829292297,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9594464302062988},{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.788576602935791},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.7759662866592407},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7662543654441833},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5794777870178223},{"id":"https://openalex.org/keywords/reinforcement-learning","display_name":"Reinforcement learning","score":0.5716760158538818},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5189782977104187},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.4797283709049225},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.40091702342033386}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9594464302062988},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.788576602935791},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.7759662866592407},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7662543654441833},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5794777870178223},{"id":"https://openalex.org/C97541855","wikidata":"https://www.wikidata.org/wiki/Q830687","display_name":"Reinforcement learning","level":2,"score":0.5716760158538818},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5189782977104187},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.4797283709049225},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.40091702342033386},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/spw54247.2022.9833895","is_oa":false,"landing_page_url":"https://doi.org/10.1109/spw54247.2022.9833895","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE Security and Privacy Workshops (SPW)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":72,"referenced_works":["https://openalex.org/W1673923490","https://openalex.org/W1883420340","https://openalex.org/W1945616565","https://openalex.org/W2603766943","https://openalex.org/W2618043096","https://openalex.org/W2620038827","https://openalex.org/W2625220439","https://openalex.org/W2768209273","https://openalex.org/W2774018344","https://openalex.org/W2798302089","https://openalex.org/W2803328024","https://openalex.org/W2810611310","https://openalex.org/W2893554781","https://openalex.org/W2912070915","https://openalex.org/W2913266441","https://openalex.org/W2949479613","https://openalex.org/W2950048339","https://openalex.org/W2951735139","https://openalex.org/W2956047993","https://openalex.org/W2962872506","https://openalex.org/W2963001136","https://openalex.org/W2963070423","https://openalex.org/W2963143631","https://openalex.org/W2963389226","https://openalex.org/W2963744840","https://openalex.org/W2969542116","https://openalex.org/W2970504098","https://openalex.org/W2982648698","https://openalex.org/W2983044655","https://openalex.org/W2988796733","https://openalex.org/W2996296329","https://openalex.org/W3007305010","https://openalex.org/W3009542902","https://openalex.org/W3015481738","https://openalex.org/W3015625436","https://openalex.org/W3018979822","https://openalex.org/W3088909400","https://openalex.org/W3091857398","https://openalex.org/W3103340107","https://openalex.org/W3116515605","https://openalex.org/W3151598346","https://openalex.org/W4293846201","https://openalex.org/W4295312788","https://openalex.org/W4300485806","https://openalex.org/W6637162671","https://openalex.org/W6639568328","https://openalex.org/W6640425456","https://openalex.org/W6729756640","https://openalex.org/W6734547106","https://openalex.org/W6739360251","https://openalex.org/W6739868092","https://openalex.org/W6745272055","https://openalex.org/W6745480919","https://openalex.org/W6746608116","https://openalex.org/W6748475379","https://openalex.org/W6751008465","https://openalex.org/W6752654261","https://openalex.org/W6752931940","https://openalex.org/W6755038706","https://openalex.org/W6758684365","https://openalex.org/W6758779121","https://openalex.org/W6759129252","https://openalex.org/W6764522968","https://openalex.org/W6765597837","https://openalex.org/W6766978945","https://openalex.org/W6767354759","https://openalex.org/W6771326840","https://openalex.org/W6771592004","https://openalex.org/W6774469542","https://openalex.org/W6780559895","https://openalex.org/W6793826875","https://openalex.org/W6798088609"],"related_works":["https://openalex.org/W4320018150","https://openalex.org/W2918664383","https://openalex.org/W2040808657","https://openalex.org/W3048732067","https://openalex.org/W4320855730","https://openalex.org/W106056076","https://openalex.org/W4383468834","https://openalex.org/W2135200719","https://openalex.org/W4384648009","https://openalex.org/W4303645823"],"abstract_inverted_index":{"Since":[0],"the":[1,32,77,86,102,129,132,149,172],"discovery":[2],"of":[3,34,49,88,93,106,151,162,174],"adversarial":[4,16,38,112],"attacks":[5,47,72,119],"against":[6,37,95,182],"machine":[7,17],"learning":[8,18,142],"models":[9,36,90],"nearly":[10],"a":[11,123,140,179],"decade":[12],"ago,":[13],"research":[14],"on":[15],"has":[19,58],"rapidly":[20],"evolved":[21],"into":[22],"an":[23,108,183],"eternal":[24],"war":[25],"between":[26,131],"defenders,":[27],"who":[28,42,65],"seek":[29,43],"to":[30,44,83,117,158],"increase":[31],"robustness":[33,94],"ML":[35,63,113],"attacks,":[39],"and":[40,104,120,134,160],"adversaries,":[41],"develop":[45],"better":[46],"capable":[48],"weakening":[50],"or":[51],"defeating":[52],"these":[53,71,96],"defenses.":[54,169],"This":[55,147],"domain,":[56],"however,":[57],"found":[59],"little":[60],"buy-in":[61],"from":[62],"practitioners,":[64],"are":[66,81],"neither":[67],"overtly":[68],"concerned":[69],"about":[70],"affecting":[73],"their":[74,89],"systems":[75],"in":[76,91,122,139],"real":[78],"world":[79],"nor":[80],"willing":[82],"trade":[84],"off":[85],"accuracy":[87],"pursuit":[92],"attacks.In":[97],"this":[98],"paper,":[99],"we":[100],"motivate":[101],"design":[103],"implementation":[105],"Ares,":[107],"evaluation":[109,153,161],"framework":[110],"for":[111],"that":[114],"allows":[115,148],"researchers":[116],"explore":[118],"defenses":[121],"realistic":[124],"wargame-like":[125],"environment.":[126],"Ares":[127],"frames":[128],"conflict":[130],"attacker":[133,181],"defender":[135],"as":[136,156,166],"two":[137],"agents":[138],"reinforcement":[141],"environment":[143],"with":[144],"opposing":[145],"objectives.":[146],"introduction":[150],"system-level":[152],"metrics":[154],"such":[155,165],"time":[157],"failure":[159],"complex":[163],"strategies":[164],"moving":[167],"target":[168],"We":[170],"provide":[171],"results":[173],"our":[175],"initial":[176],"exploration":[177],"involving":[178],"white-box":[180],"adversarially":[184],"trained":[185],"defender.":[186]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2}],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2025-10-10T00:00:00"}