How to Measure Cyber Resilience of an Autonomous Agent: Approaches and Challenges

TL;DR

This paper reviews methods for measuring cyber resilience in autonomous agents, highlighting current limitations and proposing future research directions to improve assessment approaches against increasing cyber threats.

Contribution

It provides an overview of existing assessment approaches, discusses practical challenges, and suggests new research directions for effective cyber resilience measurement.

Findings

Current approaches have limitations in measuring cyber resilience.

Practical challenges hinder accurate assessment of autonomous agents.

Future research is needed to develop comprehensive resilience measures.

Abstract

Several approaches have been used to assess the performance of cyberphysical systems and their exposure to various types of risks. Such assessments have become increasingly important as autonomous attackers ramp up the frequency, duration and intensity of threats while autonomous agents have the potential to respond to cyber-attacks with unprecedented speed and scale. However, most assessment approaches have limitations with respect to measuring cyber resilience, or the ability of systems to absorb, recover from, and adapt to cyberattacks. In this paper, we provide an overview of several common approaches, discuss practical challenges and propose research directions for the development of effective cyber resilience measures.