Abstract
Artificial intelligence (AI) is being widely adopted in modern cyber defense to weave automation and scalability into the operational fabric of cybersecurity firms. Today, AI aids in crucial cyber defense tasks such as malware and intrusion detection to keep information technology (IT) infrastructure secure. Despite their value, cyber defense AI agents can be vulnerable to adversarial attacks. In these attacks, the adversary deliberately manipulates a malicious input by taking a sequence of actions so that a targeted cyber defense AI agent fails to correctly determine its maliciousness. Consequently, the robustness of cyber defense AI agents has raised deep concerns in modern cyber defense. Drawing on the computational design science paradigm, we couple robust optimization and reinforcement learning theories to develop a novel framework, called reinforcement learning-based adversarial attack robustness (RADAR), to increase the robustness of cyber defense AI agents against adversarial attacks. To demonstrate practical utility, we instantiate RADAR for malware attacks—the primary cause of financial loss in cyber attacks. We rigorously evaluate the performance of RADAR as a situated IT artifact against state-of-the-art machine learning and deep learning-based benchmark methods. Incorporating RADAR in three renowned malware detectors shows an adversarial robustness increase of up to seven times, on average. We conclude by discussing contributions to information system research as well as implications for cyber defense stakeholders.
©2025. The Authors.
©2025. The Authors.
| Original language | English |
|---|---|
| Pages (from-to) | 1385-1416 |
| Number of pages | 32 |
| Journal | MIS Quarterly |
| Volume | 49 |
| Issue number | 4 |
| DOIs | |
| Publication status | Published - Dec 2025 |
Funding
This material is based upon work supported by the National Science Foundation (NSF) under the grants CNS-1936370 (SaTC CORE) and DGE-1921485 (SFS), as well as the National Science Foundation of China (NSFC) under Grants 72342011, 72322019, and 72293581. Weifeng Li is also supported by the Terry-Sanford Research Award.
Research Keywords
- Cyber defense
- adversarial attacks
- artificial intelligence
- computational design science
- cyber defense
- deep
- deep reinforcement learning
- reinforcement learning
- robust optimization
Publisher's Copyright Statement
- COPYRIGHT TERMS OF DEPOSITED FINAL PUBLISHED VERSION FILE: Reza Ebrahimi, Yidong Chai, Weifeng Li, Jason Pacheco, Hsinchun Chen; RADAR: A Framework for Developing Adversarially Robust Cyber Defense AI Agents with Deep Reinforcement Learning. MIS Quarterly 1 December 2025; 49 (4): 1385–1416. https://doi.org/10.25300/MISQ/2024/17339
- Copyright © 2026 by the Regents of the University of Minnesota. Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and full citation on the first page. Copyright for components of this work owned by others than the MISRC must be honored. Abstracting with credit is permitted. To copy otherwise, to post on servers, or to redistribute to lists requires prior specific permission and possibly a fee. Request permission to publish from: MIS Quarterly; Carlson School of Management; University of Minnesota; 321 19th Ave. So.; Minneapolis, MN 55455. ISSN: 0276-7783.
Fingerprint
Dive into the research topics of 'RADAR: A Framework for Developing Adversarially Robust Cyber Defense AI Agents with Deep Reinforcement Learning'. Together they form a unique fingerprint.Cite this
- APA
- Author
- BIBTEX
- Harvard
- Standard
- RIS
- Vancouver