A Survey of Adversarial Machine Learning in Cyber Warfare

Duddu, Vasisht

doi:10.14429/dsj.68.12371

Cited by 54 publications

(40 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As these algorithms are used increasingly in business, military, and other real-world use-cases, the requirements for security of these systems and privacy of their data become proportionally more important. Within cyber-security systems, machine learning algorithms are considered to be the weakest link because their nature of constant evolution, and the ability of sophisticated adversaries to manipulate their behaviours to exploit models [6]. There are several ways in which an adversary can violate a machine learning model [23].…”

Section: Adversarial Machine Learningmentioning

confidence: 99%

“…The field of adversarial machine learning (AML) was coined to study how adversarial techniques can potentially exploit ML algorithms, and develop robust strategies to defend systems against the exposure these algorithms generate [5]. AML has been studied out in a number of fields, including image classification [6] and intrusion detection [7,8]. There have been very few studies in IoT systems [3].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Robustness Evaluations of Sustainable Machine Learning Models against Data Poisoning Attacks in the Internet of Things

2020

View full text Add to dashboard Cite

With the increasing popularity of the Internet of Things (IoT) platforms, the cyber security of these platforms is a highly active area of research. One key technology underpinning smart IoT systems is machine learning, which classifies and predicts events from large-scale data in IoT networks. Machine learning is susceptible to cyber attacks, particularly data poisoning attacks that inject false data when training machine learning models. Data poisoning attacks degrade the performances of machine learning models. It is an ongoing research challenge to develop trustworthy machine learning models resilient and sustainable against data poisoning attacks in IoT networks. We studied the effects of data poisoning attacks on machine learning models, including the gradient boosting machine, random forest, naive Bayes, and feed-forward deep learning, to determine the levels to which the models should be trusted and said to be reliable in real-world IoT settings. In the training phase, a label modification function is developed to manipulate legitimate input classes. The function is employed at data poisoning rates of 5%, 10%, 20%, and 30% that allow the comparison of the poisoned models and display their performance degradations. The machine learning models have been evaluated using the ToN_IoT and UNSW NB-15 datasets, as they include a wide variety of recent legitimate and attack vectors. The experimental results revealed that the models’ performances will be degraded, in terms of accuracy and detection rates, if the number of the trained normal observations is not significantly larger than the poisoned data. At the rate of data poisoning of 30% or greater on input data, machine learning performances are significantly degraded.

show abstract

Section: Adversarial Machine Learningmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Robustness Evaluations of Sustainable Machine Learning Models against Data Poisoning Attacks in the Internet of Things

2020

View full text Add to dashboard Cite

show abstract

“…Gradient masking comprises a group of defensive techniques which assume that ''if the model is non-differentiable or if the model's gradient is zero at data points, then gradient based attacks are ineffective'' [23]. One form of gradient masking is gradient hiding, which consists on using non differentiable models to perform classification, such as decision trees.…”

Section: Adversarial Defensesmentioning

confidence: 99%

“…Models are many times trained with assumptions in mind for convenience or ease of computation, such as feature independence and linear separability of the data, but these types of assumptions can often open possibilities for adversarial attacks [23].…”

Section: Introductionmentioning

confidence: 99%

“…We also found other papers that apply adversarial concepts to intrusion and malware scenarios, but we specifically focus on adversarial machine learning. Several adversarial machine learning surveys and books were used to find multiple adversarial attack and defense strategies [12], [15], [18], [21], [23], [24], [26], [50]. After exploring these studies, we concluded that adversarial attack techniques were proven effective in both malware and intrusion scenarios, with a high diversity of techniques being tested.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review

et al. 2020

View full text Add to dashboard Cite

Cyber-security is the practice of protecting computing systems and networks from digital attacks, which are a rising concern in the Information Age. With the growing pace at which new attacks are developed, conventional signature based attack detection methods are often not enough, and machine learning poses as a potential solution. Adversarial machine learning is a research area that examines both the generation and detection of adversarial examples, which are inputs specially crafted to deceive classifiers, and has been extensively studied specifically in the area of image recognition, where minor modifications are performed on images that cause a classifier to produce incorrect predictions. However, in other fields, such as intrusion and malware detection, the exploration of such methods is still growing. The aim of this survey is to explore works that apply adversarial machine learning concepts to intrusion and malware detection scenarios. We concluded that a wide variety of attacks were tested and proven effective in malware and intrusion detection, although their practicality was not tested in intrusion scenarios. Adversarial defenses were substantially less explored, although their effectiveness was also proven at resisting adversarial attacks. We also concluded that, contrarily to malware scenarios, the variety of datasets in intrusion scenarios is still very small, with the most used dataset being greatly outdated.

show abstract

Data, Analytics and Interoperability Between Systems (IoT) is Incongruous with the Economics of Technology

Datta

Saleem

Barati

et al. 2021

Big Data Analytics for Internet of Things

View full text Add to dashboard Cite

A Survey of Adversarial Machine Learning in Cyber Warfare

Cited by 54 publications

References 25 publications

Robustness Evaluations of Sustainable Machine Learning Models against Data Poisoning Attacks in the Internet of Things

Robustness Evaluations of Sustainable Machine Learning Models against Data Poisoning Attacks in the Internet of Things

Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review

Data, Analytics and Interoperability Between Systems (IoT) is Incongruous with the Economics of Technology

Contact Info

Product

Resources

About