SoK: Come Together -- Unifying Security, Information Theory, and Cognition for a Mixed Reality Deception Attack Ontology & Analysis Framework

TL;DR

This SoK addresses deception attacks in MR by building the first comprehensive ontology and a dual-model analysis that links information channels and human cognition. The authors synthesize MR security, information theory, and cognition to derive an MR Deception Analysis Framework (DAF) and an MR deception ontology, plus an information-theoretic model of attack impact on channel capacity and a decision-making model connecting perception, attention, and memory to deception. Key contributions include the first in-depth MR deception study, a structured ontology, an information-theoretic model $C = W \log_2\left(1 + \frac{S}{N_A+N_E}\right)$, and a Vitanyi-based mimicry measure $M(X, Y) = 1 - D(X, Y)$ for processing attacks, along with a generalizable framework and a literature review; they also outline five research gaps. The framework supports evaluating how deception attacks affect information channels and cognitive processes, with potential applications to detection, defense, and policy in MR systems. Future work calls for empirical validation and extension to other HCI domains.

Abstract

We present a primary attack ontology and analysis framework for deception attacks in Mixed Reality (MR). This is achieved through multidisciplinary Systematization of Knowledge (SoK), integrating concepts from MR security, information theory, and cognition. While MR grows in popularity, it presents many cybersecurity challenges, particularly concerning deception attacks and their effects on humans. In this paper, we use the Borden-Kopp model of deception to develop a comprehensive ontology of MR deception attacks. Further, we derive two models to assess impact of MR deception attacks on information communication and decision-making. The first, an information-theoretic model, mathematically formalizes the effects of attacks on information communication. The second, a decision-making model, details the effects of attacks on interlaced cognitive processes. Using our ontology and models, we establish the MR Deception Analysis Framework (DAF) to assess the effects of MR deception attacks on information channels, perception, and attention. Our SoK uncovers five key findings for research and practice and identifies five research gaps to guide future work.

Figures (4)

• Figure 1: Our five-stage methodology beginning with literature review (top). Outcomes of the literature review informed intermediary stages. Knowledge from these stages culminates in the MR DAF.
• Figure 2: Mind Map of MR Deception Attacks Ontology. Channel attacks on the left. Processing attacks on the right.
• Figure 3: MR Deception Information-Theoretic Model. Messages are transmitted by a MR headset to a user. Deceptive messages are injected into transmissions. Noise from the attacker or environment affect channel capacity.
• Figure 4: MR Deception Decision-Making Model. External stimuli (left) are input to cognitive processes (right). Stimuli are first processed by perception. Selective attention manages perception on relevant stimuli. Organized stimuli are stored in working memory. Interpreted stimuli are passed to decision-making, where executive attention manages decisions and their execution.