Addressing Adversarial Attacks Against Security Systems Based on Machine Learning

2019 11th International Conference on Cyber Conflict (CyCon) Pub Date : 2019-05-01 DOI:10.23919/CYCON.2019.8756865

Giovanni Apruzzese, M. Colajanni, Luca Ferretti, Mirco Marchetti

{"title":"Addressing Adversarial Attacks Against Security Systems Based on Machine Learning","authors":"Giovanni Apruzzese, M. Colajanni, Luca Ferretti, Mirco Marchetti","doi":"10.23919/CYCON.2019.8756865","DOIUrl":null,"url":null,"abstract":"Machine-learning solutions are successfully adopted in multiple contexts but the application of these techniques to the cyber security domain is complex and still immature. Among the many open issues that affect security systems based on machine learning, we concentrate on adversarial attacks that aim to affect the detection and prediction capabilities of machine-learning models. We consider realistic types of poisoning and evasion attacks targeting security solutions devoted to malware, spam and network intrusion detection. We explore the possible damages that an attacker can cause to a cyber detector and present some existing and original defensive techniques in the context of intrusion detection systems. This paper contains several performance evaluations that are based on extensive experiments using large traffic datasets. The results highlight that modern adversarial attacks are highly effective against machine-learning classifiers for cyber detection, and that existing solutions require improvements in several directions. The paper paves the way for more robust machine-learning-based techniques that can be integrated into cyber security platforms.","PeriodicalId":114193,"journal":{"name":"2019 11th International Conference on Cyber Conflict (CyCon)","volume":"177 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"62","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 11th International Conference on Cyber Conflict (CyCon)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23919/CYCON.2019.8756865","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 62

Abstract

Machine-learning solutions are successfully adopted in multiple contexts but the application of these techniques to the cyber security domain is complex and still immature. Among the many open issues that affect security systems based on machine learning, we concentrate on adversarial attacks that aim to affect the detection and prediction capabilities of machine-learning models. We consider realistic types of poisoning and evasion attacks targeting security solutions devoted to malware, spam and network intrusion detection. We explore the possible damages that an attacker can cause to a cyber detector and present some existing and original defensive techniques in the context of intrusion detection systems. This paper contains several performance evaluations that are based on extensive experiments using large traffic datasets. The results highlight that modern adversarial attacks are highly effective against machine-learning classifiers for cyber detection, and that existing solutions require improvements in several directions. The paper paves the way for more robust machine-learning-based techniques that can be integrated into cyber security platforms.

查看原文本刊更多论文

解决基于机器学习的安全系统对抗性攻击

机器学习解决方案已成功地应用于多种环境中，但这些技术在网络安全领域的应用是复杂的，而且仍然不成熟。在影响基于机器学习的安全系统的许多开放问题中，我们专注于旨在影响机器学习模型的检测和预测能力的对抗性攻击。我们考虑了针对恶意软件、垃圾邮件和网络入侵检测的安全解决方案的实际类型的中毒和逃避攻击。我们探讨了攻击者可能对网络探测器造成的损害，并在入侵检测系统的背景下提出了一些现有的和原始的防御技术。本文包含几个基于使用大型交通数据集的广泛实验的性能评估。结果强调，现代对抗性攻击对用于网络检测的机器学习分类器非常有效，现有的解决方案需要在几个方向上进行改进。这篇论文为更强大的基于机器学习的技术铺平了道路，这些技术可以集成到网络安全平台中。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2019 11th International Conference on Cyber Conflict (CyCon)

自引率

0.00%

发文量