Andrew McCarthy Andrew6.Mccarthy@uwe.ac.uk
Senior Lecturer in Cyber Security
Feature vulnerability and robustness assessment against adversarial machine learning attacks
Mccarthy, Andrew; Andriotis, Panagiotis; Ghadafi, Essam; Legg, Phil
Authors
Dr Panos Andriotis Panagiotis.Andriotis@uwe.ac.uk
Senior Lecturer in Computer Forensics and Security
Essam Ghadafi Essam.Ghadafi@uwe.ac.uk
Senior Lecturer in Computer Science
Professor Phil Legg Phil.Legg@uwe.ac.uk
Professor in Cyber Security
Abstract
Whilst machine learning has been widely adopted for various domains, it is important to consider how such techniques may be susceptible to malicious users through adversarial attacks. Given a trained classifier, a malicious attack may attempt to craft a data observation whereby the data features purposefully trigger the classifier to yield incorrect responses. This has been observed in various image classification tasks, including falsifying road sign detection and facial recognition, which could have severe consequences in real-world deployment. In this work, we investigate how these attacks could impact on network traffic analysis, and how a system could perform misclassification of common network attacks such as DDoS attacks. Using the CICIDS2017 data, we examine how vulnerable the data features used for intrusion detection are to perturbation attacks using FGSM adversarial examples. As a result, our method provides a defensive approach for assessing feature robustness that seeks to balance between classification accuracy whilst minimising the attack surface of the feature space.
| Presentation Conference Type | Conference Paper (published) |
|---|---|
| Conference Name | 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment, CyberSA 2021 |
| Start Date | Jun 14, 2021 |
| End Date | Jun 18, 2021 |
| Acceptance Date | Apr 16, 2021 |
| Online Publication Date | Jul 12, 2021 |
| Publication Date | Jul 12, 2021 |
| Deposit Date | Jun 1, 2021 |
| Publicly Available Date | Aug 13, 2021 |
| Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
| Book Title | 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA) |
| ISBN | 9781665430920 |
| DOI | https://doi.org/10.1109/CyberSA52016.2021.9478199 |
| Keywords | Index Terms-adversarial learning; machine learning; network traffic analysis |
| Public URL | https://uwe-repository.worktribe.com/output/7434849 |
Files
Feature vulnerability and robustness assessment against adversarial machine learning attacks
(660 Kb)
PDF
Licence
http://www.rioxx.net/licenses/all-rights-reserved
Publisher Licence URL
http://www.rioxx.net/licenses/all-rights-reserved
Copyright Statement
© 2021 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works
You might also like
Shouting through letterboxes: A study on attack susceptibility of voice assistants
(2020)
Presentation / Conference Contribution
Smartphone message sentiment analysis
(2014)
Book Chapter
Downloadable Citations
About UWE Bristol Research Repository
Administrator e-mail: repository@uwe.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search