{"id":"https://openalex.org/W4307315896","doi":"https://doi.org/10.48550/arxiv.2210.12952","title":"Ares: A System-Oriented Wargame Framework for Adversarial ML","display_name":"Ares: A System-Oriented Wargame Framework for Adversarial ML","publication_year":2022,"publication_date":"2022-10-24","ids":{"openalex":"https://openalex.org/W4307315896","doi":"https://doi.org/10.48550/arxiv.2210.12952"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2210.12952","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2210.12952","pdf_url":"https://arxiv.org/pdf/2210.12952","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2210.12952","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5091511008","display_name":"Farhan Ahmed","orcid":"https://orcid.org/0000-0002-1147-8347"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ahmed, Farhan","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":null,"display_name":"Vaishnavi, Pratik","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Vaishnavi, Pratik","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052581946","display_name":"Kevin Eykholt","orcid":"https://orcid.org/0000-0002-7040-1657"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Eykholt, Kevin","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5021423602","display_name":"Amir Rahmati","orcid":"https://orcid.org/0000-0001-7361-1898"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Rahmati, Amir","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9778000116348267,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10883","display_name":"Ethics and Social Impacts of AI","score":0.9520000219345093,"subfield":{"id":"https://openalex.org/subfields/3311","display_name":"Safety Research"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9635457992553711},{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.7716693878173828},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.7523899674415588},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7315471172332764},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.532333493232727},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5189828276634216},{"id":"https://openalex.org/keywords/reinforcement-learning","display_name":"Reinforcement learning","score":0.5141806602478027},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.44200369715690613},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3974408805370331}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9635457992553711},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.7716693878173828},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.7523899674415588},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7315471172332764},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.532333493232727},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5189828276634216},{"id":"https://openalex.org/C97541855","wikidata":"https://www.wikidata.org/wiki/Q830687","display_name":"Reinforcement learning","level":2,"score":0.5141806602478027},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.44200369715690613},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3974408805370331},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2210.12952","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2210.12952","pdf_url":"https://arxiv.org/pdf/2210.12952","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"doi:10.48550/arxiv.2210.12952","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2210.12952","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2210.12952","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2210.12952","pdf_url":"https://arxiv.org/pdf/2210.12952","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1920700475","display_name":null,"funder_award_id":"FA9550-22-1-0029","funder_id":"https://openalex.org/F4320338294","funder_display_name":"Air Force Research Laboratory"},{"id":"https://openalex.org/G4720003262","display_name":null,"funder_award_id":"N00014-22","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G6098521345","display_name":null,"funder_award_id":"FA9550","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G6703091548","display_name":null,"funder_award_id":"N00014-22-1-2001","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G8289759875","display_name":null,"funder_award_id":"FA9550","funder_id":"https://openalex.org/F4320338294","funder_display_name":"Air Force Research Laboratory"},{"id":"https://openalex.org/G8876996369","display_name":null,"funder_award_id":"N00014","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G8910086741","display_name":null,"funder_award_id":"N00014-20-1-2858","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"}],"funders":[{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"},{"id":"https://openalex.org/F4320338294","display_name":"Air Force Research Laboratory","ror":"https://ror.org/02e2egq70"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4307315896.pdf","grobid_xml":"https://content.openalex.org/works/W4307315896.grobid-xml"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4320018150","https://openalex.org/W2040808657","https://openalex.org/W4239582170","https://openalex.org/W3048732067","https://openalex.org/W2918664383","https://openalex.org/W3123119822","https://openalex.org/W106056076","https://openalex.org/W4320855730","https://openalex.org/W4383468834","https://openalex.org/W2135200719"],"abstract_inverted_index":{"Since":[0],"the":[1,32,77,86,103,130,133,150,173],"discovery":[2],"of":[3,34,49,88,93,107,152,163,175],"adversarial":[4,16,38,113],"attacks":[5,47,72,120],"against":[6,37,95,183],"machine":[7,17],"learning":[8,18,143],"models":[9,36,90],"nearly":[10],"a":[11,124,141,180],"decade":[12],"ago,":[13],"research":[14],"on":[15],"has":[19,58],"rapidly":[20],"evolved":[21],"into":[22],"an":[23,109,184],"eternal":[24],"war":[25],"between":[26,132],"defenders,":[27],"who":[28,42,65],"seek":[29,43],"to":[30,44,83,118,159],"increase":[31],"robustness":[33,94],"ML":[35,63,114],"attacks,":[39],"and":[40,105,121,135,161],"adversaries,":[41],"develop":[45],"better":[46],"capable":[48],"weakening":[50],"or":[51],"defeating":[52],"these":[53,71,96],"defenses.":[54,170],"This":[55,148],"domain,":[56],"however,":[57],"found":[59],"little":[60],"buy-in":[61],"from":[62],"practitioners,":[64],"are":[66,81],"neither":[67],"overtly":[68],"concerned":[69],"about":[70],"affecting":[73],"their":[74,89],"systems":[75],"in":[76,91,123,140],"real":[78],"world":[79],"nor":[80],"willing":[82],"trade":[84],"off":[85],"accuracy":[87],"pursuit":[92],"attacks.":[97],"In":[98],"this":[99],"paper,":[100],"we":[101],"motivate":[102],"design":[104],"implementation":[106],"Ares,":[108],"evaluation":[110,154,162],"framework":[111],"for":[112],"that":[115],"allows":[116,149],"researchers":[117],"explore":[119],"defenses":[122],"realistic":[125],"wargame-like":[126],"environment.":[127],"Ares":[128],"frames":[129],"conflict":[131],"attacker":[134,182],"defender":[136],"as":[137,157,167],"two":[138],"agents":[139],"reinforcement":[142],"environment":[144],"with":[145],"opposing":[146],"objectives.":[147],"introduction":[151],"system-level":[153],"metrics":[155],"such":[156,166],"time":[158],"failure":[160],"complex":[164],"strategies":[165],"moving":[168],"target":[169],"We":[171],"provide":[172],"results":[174],"our":[176],"initial":[177],"exploration":[178],"involving":[179],"white-box":[181],"adversarially":[185],"trained":[186],"defender.":[187]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}