Skip to main content

Research Repository

Advanced Search

Defending against adversarial machine learning attacks using hierarchical learning: A case study on network traffic attack classification

McCarthy, Andrew; Ghadafi, Essam; Andriotis, Panagiotis; Legg, Phil

Defending against adversarial machine learning attacks using hierarchical learning: A case study on network traffic attack classification Thumbnail


Authors

Essam Ghadafi Essam.Ghadafi@uwe.ac.uk
Senior Lecturer in Computer Science

Profile image of Panos Andriotis

Dr Panos Andriotis Panagiotis.Andriotis@uwe.ac.uk
Senior Lecturer in Computer Forensics and Security



Abstract

Machine learning is key for automated detection of malicious network activity to ensure that computer networks and organizations are protected against cyber security attacks. Recently, there has been growing interest in the domain of adversarial machine learning, which explores how a machine learning model can be compromised by an adversary, resulting in misclassified output. Whilst to date, most focus has been given to visual domains, the challenge is present in all applications of machine learning where a malicious attacker would want to cause unintended functionality, including cyber security and network traffic analysis. We first present a study on conducting adversarial attacks against a well-trained network traffic classification model. We show how well-crafted adversarial examples can be constructed so that known attack types are misclassified by the model as benign activity. To combat this, we present a novel defensive strategy based on hierarchical learning to help reduce the attack surface that an adversarial example can exploit within the constraints of the parameter space of the intended attack. Our results show that our defensive learning model can withstand crafted adversarial attacks and can achieve classification accuracy in line with our original model when not under attack.

Journal Article Type Article
Acceptance Date Dec 1, 2022
Online Publication Date Dec 17, 2022
Publication Date Feb 1, 2023
Deposit Date Dec 7, 2022
Publicly Available Date Dec 18, 2024
Journal Journal of Information Security and Applications
Electronic ISSN 2214-2126
Publisher Elsevier
Peer Reviewed Peer Reviewed
Volume 72
Article Number 103398
DOI https://doi.org/10.1016/j.jisa.2022.103398
Keywords adversarial learning; hierarchical classification; network traffic analysis; functionality preservation; machine learning; model robustness
Public URL https://uwe-repository.worktribe.com/output/10198119
Publisher URL https://www.sciencedirect.com/science/article/pii/S2214212622002423?via%3Dihub

Files








You might also like



Downloadable Citations