Andrew McCarthy Andrew6.Mccarthy@uwe.ac.uk
Admin/Tech Specialist - CATE - CSCT
Defending against adversarial machine learning attacks using hierarchical learning: A case study on network traffic attack classification
McCarthy, Andrew; Ghadafi, Essam; Andriotis, Panagiotis; Legg, Phil
Authors
Essam Ghadafi Essam.Ghadafi@uwe.ac.uk
Senior Lecturer in Computer Science
Dr Panos Andriotis Panagiotis.Andriotis@uwe.ac.uk
Senior Lecturer in Computer Forensics and Security
Professor Phil Legg Phil.Legg@uwe.ac.uk
Professor in Cyber Security
Abstract
Machine learning is key for automated detection of malicious network activity to ensure that computer networks and organizations are protected against cyber security attacks. Recently, there has been growing interest in the domain of adversarial machine learning, which explores how a machine learning model can be compromised by an adversary, resulting in misclassified output. Whilst to date, most focus has been given to visual domains, the challenge is present in all applications of machine learning where a malicious attacker would want to cause unintended functionality, including cyber security and network traffic analysis. We first present a study on conducting adversarial attacks against a well-trained network traffic classification model. We show how well-crafted adversarial examples can be constructed so that known attack types are misclassified by the model as benign activity. To combat this, we present a novel defensive strategy based on hierarchical learning to help reduce the attack surface that an adversarial example can exploit within the constraints of the parameter space of the intended attack. Our results show that our defensive learning model can withstand crafted adversarial attacks and can achieve classification accuracy in line with our original model when not under attack.
Citation
McCarthy, A., Ghadafi, E., Andriotis, P., & Legg, P. (2023). Defending against adversarial machine learning attacks using hierarchical learning: A case study on network traffic attack classification. Journal of Information Security and Applications, 72, Article 103398. https://doi.org/10.1016/j.jisa.2022.103398
| Journal Article Type | Article |
|---|---|
| Acceptance Date | Dec 1, 2022 |
| Online Publication Date | Dec 17, 2022 |
| Publication Date | Feb 1, 2023 |
| Deposit Date | Dec 7, 2022 |
| Publicly Available Date | Dec 18, 2024 |
| Journal | Journal of Information Security and Applications |
| Electronic ISSN | 2214-2126 |
| Publisher | Elsevier |
| Peer Reviewed | Peer Reviewed |
| Volume | 72 |
| Article Number | 103398 |
| DOI | https://doi.org/10.1016/j.jisa.2022.103398 |
| Keywords | adversarial learning; hierarchical classification; network traffic analysis; functionality preservation; machine learning; model robustness |
| Public URL | https://uwe-repository.worktribe.com/output/10198119 |
| Publisher URL | https://www.sciencedirect.com/science/article/pii/S2214212622002423?via%3Dihub |
Files
Defending against adversarial machine learning attacks using hierarchical learning: A case study on network traffic attack classification
(7.3 Mb)
PDF
Licence
http://creativecommons.org/licenses/by-nc-nd/4.0/
Publisher Licence URL
http://creativecommons.org/licenses/by-nc-nd/4.0/
Copyright Statement
This is the author’s accepted manuscript. The final published version is available here: https://www.sciencedirect.com/science/article/pii/S2214212622002423?via%3Dihub
Defending against adversarial machine learning attacks using hierarchical learning: A case study on network traffic attack classification
(3.6 Mb)
PDF
Licence
http://creativecommons.org/licenses/by-nc-nd/4.0/
Publisher Licence URL
http://creativecommons.org/licenses/by-nc-nd/4.0/
You might also like
Feature vulnerability and robustness assessment against adversarial machine learning attacks
(2021)
Conference Proceeding
Partially structure-preserving signatures: Lower bounds, constructions and more
(2021)
Conference Proceeding
Foundations of fully dynamic group signatures
(2020)
Journal Article
Further lower bounds for structure-preserving signatures in asymmetric bilinear groups
(2019)
Conference Proceeding
Towards a classification of non-interactive computational assumptions in cyclic groups
(2017)
Conference Proceeding
Downloadable Citations
About UWE Bristol Research Repository
Administrator e-mail: repository@uwe.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2024
Advanced Search