A Brute-Force Black-Box Method to Attack Machine Learning-Based Systems in Cybersecurity

Zhang, Sicong; Xie, Xiaoyao; Yang, Xu

doi:10.1109/access.2020.3008433

Cited by 47 publications

(19 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The generated bot samples also called GAN_bots along with real_bots are combined into a unified set (Algorithm 3 line 17). This unified set is reshuffled and used to perform 10-fold train-test splitting using the selected classifier (Algorithm 3 lines [18][19][20][21][22][23][24].…”

Section: Proposed Methodologymentioning

confidence: 99%

Security Hardening of Botnet Detectors Using Generative Adversarial Networks

Randhawa

Aslam²,

Alauthman³

et al. 2021

IEEE Access

View full text Add to dashboard Cite

Machine learning (ML) based botnet detectors are no exception to traditional ML models when it comes to adversarial evasion attacks. The datasets used to train these models have also scarcity and imbalance issues. We propose a new technique named Botshot, based on generative adversarial networks (GANs) for addressing these issues and proactively making botnet detectors aware of adversarial evasions. Botshot is cost-effective as compared to the network emulation for botnet traffic data generation rendering the dedicated hardware resources unnecessary. First, we use the extended set of network flow and time-based features for three publicly available botnet datasets. Second, we utilize two GANs (vanilla, conditional) for generating realistic botnet traffic. We evaluate the generator performance using classifier two-sample test (C2ST) with 10-fold 70-30 train-test split and propose the use of 'recall' in contrast to 'accuracy' for proactively learning adversarial evasions. We then augment the train set with the generated data and test using the unchanged test set. Last, we compare our results with benchmark oversampling methods with augmentation of additional botnet traffic data in terms of average accuracy, precision, recall and F1 score over six different ML classifiers. The empirical results demonstrate the effectiveness of the GAN-based oversampling for learning in advance the adversarial evasion attacks on botnet detectors.

show abstract

Section: Proposed Methodologymentioning

confidence: 99%

Security Hardening of Botnet Detectors Using Generative Adversarial Networks

Randhawa

Aslam²,

Alauthman³

et al. 2021

IEEE Access

View full text Add to dashboard Cite

show abstract

“…However, a single machine learning algorithm is no longer sufficient to meet the modern IDS's extensive requirements [7,4,8,9]. Besides the high traffic volume, IDS attacks have diversified and are way more sophisticated [6]. Each machine learning algorithm has its pros and cons.…”

Section: Table I Commonly Used Datasets For Network Intrusion Detectionmentioning

confidence: 99%

“…The problem of overfitting can be addressed using pruning. Entropy and information gain used in building a decision tree is calculated using the equations ( 5) and (6).…”

Section: Decision Treementioning

confidence: 99%

A Novel Ensemble Framework for an Intelligent Intrusion Detection System

Seth¹,

Chahal

Singh

2021

IEEE Access

View full text Add to dashboard Cite

Background: Building an effective Intrusion detection system in a multi-attack classification environment is challenging due to the diversity of modern, sophisticated attacks. High-performance classification methods are needed for Intrusion Detection Systems as attackers can establish intrusive methods and easily evade the detection tools deployed in a computing environment. Moreover, it is challenging to use a single classifier to efficiently detect all kinds of attacks. Aims: To propose a unique ensemble framework that can effectively detect different attack categories. Method: The proposed approach is based on building an ensemble by ranking the detection ability of different base classifiers to identify various types of attacks. The F1-score of an algorithm is used to compute the rank matrix for different attack categories. For final prediction algorithm's output for an attack is only considered if the algorithm has the highest F1-Score in the rank matrix for the particular attack category. This approach contrasts with the voting approach where the final classification is based on the voting of all classifiers in the ensemble irrespective of the fact if the algorithm is efficient enough to detect that attack or not. Results: With the proposed method, the final accuracy obtained is 96.97 %, a recall rate of 97.4%, and a better attack detection rate than the baseline classifiers and other existing approaches for different attack categories.

show abstract

“…However, since the inception of the smart healthcare concept, securing smart devices and confidential hospital/patient data has been one of the major challenges facing the industry. On the other hand, Machine Learning (ML), which is closely associated with computational statistics and one major aspect of the Security of Things (SoTs), has been presented to several applications to cybersecurity for the analysis of hybrid networks, comprised of both anomaly detection and the detection of data mismanagement [1]. The ML technique is apparently becoming the most promising approach to deal with security glitches and several hidden (otherwise known as zero-day) attacks in healthcare systems [2].…”

Section: Introductionmentioning

confidence: 99%

Security of Things Intrusion Detection System for Smart Healthcare

et al. 2021

View full text Add to dashboard Cite

Web security plays a very crucial role in the Security of Things (SoT) paradigm for smart healthcare and will continue to be impactful in medical infrastructures in the near future. This paper addressed a key component of security-intrusion detection systems due to the number of web security attacks, which have increased dramatically in recent years in healthcare, as well as the privacy issues. Various intrusion-detection systems have been proposed in different works to detect cyber threats in smart healthcare and to identify network-based attacks and privacy violations. This study was carried out as a result of the limitations of the intrusion detection systems in responding to attacks and challenges and in implementing privacy control and attacks in the smart healthcare industry. The research proposed a machine learning support system that combined a Random Forest (RF) and a genetic algorithm: a feature optimization method that built new intrusion detection systems with a high detection rate and a more accurate false alarm rate. To optimize the functionality of our approach, a weighted genetic algorithm and RF were combined to generate the best subset of functionality that achieved a high detection rate and a low false alarm rate. This study used the NSL-KDD dataset to simultaneously classify RF, Naive Bayes (NB) and logistic regression classifiers for machine learning. The results confirmed the importance of optimizing functionality, which gave better results in terms of the false alarm rate, precision, detection rate, recall and F1 metrics. The combination of our genetic algorithm and RF models achieved a detection rate of 98.81% and a false alarm rate of 0.8%. This research raised awareness of privacy and authentication in the smart healthcare domain, wireless communications and privacy control and developed the necessary intelligent and efficient web system. Furthermore, the proposed algorithm was applied to examine the F1-score and precisionperformance as compared to the NSL-KDD and CSE-CIC-IDS2018 datasets using different scaling factors. The results showed that the proposed GA was greatly optimized, for which the average precision was optimized by 5.65% and the average F1-score by 8.2%.

show abstract

A Brute-Force Black-Box Method to Attack Machine Learning-Based Systems in Cybersecurity

Cited by 47 publications

References 30 publications

Security Hardening of Botnet Detectors Using Generative Adversarial Networks

Security Hardening of Botnet Detectors Using Generative Adversarial Networks

A Novel Ensemble Framework for an Intelligent Intrusion Detection System

Security of Things Intrusion Detection System for Smart Healthcare

Contact Info

Product

Resources

About