De-Pois: An Attack-Agnostic Defense against Data Poisoning Attacks

Chen, Jian; Zhang, Xuxin; Zhang, Rui; Wang, Chen; Liu, Ling

doi:10.48550/arxiv.2105.03592

Cited by 1 publication

(2 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Chen et al [22] proposed an attack-agnostic defense model against poisoning attacks. A poisoning attack is an attack on the training data that leads to misclassification.…”

Section: Related Workmentioning

confidence: 99%

“…The Discriminator should learn the real data, and the Generator should process the noise. The main objective is that the Discriminator should classify the real from fake data, whereas the Generator tries to fool the discriminator [22]. This, in turn, forms a feedback loop, thereby finally obtaining the synthetic or adversarial data via the Generator.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Detection of DDoS Attacks Using SHAP-Based Feature Reduction

Cynthia,

Ghosh,

Kamath

2023

IJML

View full text Add to dashboard Cite

Machine learning techniques are widely used to protect cyberspace against malicious attacks. In this paper, we propose a machine learning-based intrusion detection system to alleviate Distributed Denial-of-Service (DDoS) attacks, which is one of the most prevalent attacks that disrupt the normal traffic of the targeted network. The model prediction is interpreted using the SHapley Additive exPlanations (SHAP) technique, which also provides the most essential features with the highest Shapley values. For the proposed model, the CICIDS2017 dataset from Kaggle is used for training the classification algorithms. The top features selected by the SHAP technique are used for training a Conditional Tabular Generative Adversarial Networks (CTGAN) for synthetic data generation. The CTGAN-generated data are then used to train prediction models such as Support Vector Classifier (SVC), Random Forest (RF), and Naïve Bayes (NB). The performance of the model is characterized using a confusion matrix. The experiment results prove that the attack detection rate is significantly improved after applying the SHAP feature selection technique.

show abstract

“…Chen et al [22] proposed an attack-agnostic defense model against poisoning attacks. A poisoning attack is an attack on the training data that leads to misclassification.…”

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%