ELAT: Ensemble Learning with Adversarial Training in defending against evaded intrusions

被引：5

作者：

Lin, Ying-Dar ^{[1
]}

Pratama, Jehoshua-Hanky ^{[1
]}

Sudyana, Didik ^{[1
]}

Lai, Yuan-Cheng ^{[2
]}

Hwang, Ren-Hung ^{[3
]}

Lin, Po-Ching ^{[4
]}

Lin, Hsuan-Yu ^{[5
]}

Lee, Wei-Bin ^{[6
]}

Chiang, Chen-Kuo ^{[4
]}

机构：

[1] Natl Yang Ming Chiao Tung Univ, Hsinchu 300, Taiwan

[2] Natl Taiwan Univ Sci & Technol, Taipei 106, Taiwan

[3] Natl Yang Ming Chiao Tung Univ, Tainan 711, Taiwan

[4] Natl Chung Cheng Univ, Chiayi 621, Taiwan

[5] Telecom Technol Ctr, New Taipei City, Taiwan

[6] Foxconn Res, New Taipei City, Taiwan

来源：

JOURNAL OF INFORMATION SECURITY AND APPLICATIONS | 2022年 / 71卷

关键词：

Adversarial attack; Machine learning; Intrusion detection; Ensemble learning; ATTACKS;

D O I：

10.1016/j.jisa.2022.103348

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Network intrusion detection systems (NIDSs) now adopt machine learning (ML) for detection of wide attack variants. However, ML is also known vulnerable to adversarial attacks, which can degrade the accuracy of ML. A number of defense strategies have been proposed but mostly in image classification areas. In this work, we propose Ensemble Learning with Adversarial Training (ELAT) to combine adversarial training and ensemble learning into a solution. We compare four approaches: single, ensemble, adversarial and ELAT. In the experiments, several models were developed and tested using different approaches to know which method is robust against adversarial attacks for ML-based NIDSs. The average F1 score for the single models was 0.93 within a wide range (0.82-0.99), but dropped to 0.29 when facing adversarial attacks, particularly dropped to 0.07 caused by the strongest attack, Projected Gradient Descent (PGD). With ensemble, adversarial and ELAT, the average scores were recovered to 0.80, 0.88 and 0.91, respectively. In addition, this work involves prediction of the models and approach implemented behind the system using cosine similarity with an accuracy of 99.9%.

引用

页数：12

共 50 条

[31] Robust Deep Learning Ensemble Against Deception
Wei, Wenqi
Liu, Ling
IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2021, 18 (04) : 1513 - 1527
[32] Intelligent Fault Diagnosis by Fusing Domain Adversarial Training and Maximum Mean Discrepancy via Ensemble Learning
Li, Yibin
Song, Yan
Jia, Lei
Gao, Shengyao
Li, Qiqiang
Qiu, Meikang
IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2021, 17 (04) : 2833 - 2841
[33] NOMARO: Defending Against Adversarial Attacks by NOMA-Inspired Reconstruction Operation
Sinha, Aryaman
Dash, Soumya P.
Puhan, Niladri B.
IEEE SENSORS LETTERS, 2022, 6 (01)
[34] GaitReload: A Reloading Framework for Defending Against On-Manifold Adversarial Gait Sequences
Du, Peilun
Zheng, Xiaolong
Qi, Mengshi
Ma, Huadong
IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2023, 18 : 1380 - 1392
[35] Defending against adversarial attacks on graph neural networks via similarity property
Yao, Minghong
Yu, Haizheng
Bian, Hong
AI COMMUNICATIONS, 2023, 36 (01) : 27 - 39
[36] Diagnostic behavior analysis of profuse data intrusions in cyber physical systems using adversarial learning techniques
Selvarajan, Shitharth
Manoharan, Hariprasath
Abdelhaq, Maha
Khadidos, Adil O.
Khadidos, Alaa O.
Alsaqour, Raed
Uddin, Mueen
SCIENTIFIC REPORTS, 2025, 15 (01):
[37] Leveraging Ensemble Learning with Generative Adversarial Networks for Imbalanced Software Defects Prediction
Alqarni, Amani
Aljamaan, Hamoud
APPLIED SCIENCES-BASEL, 2023, 13 (24):
[38] EnsGuard: A Novel Acceleration Framework for Adversarial Ensemble Learning
Wang, Xingbin
Wang, Yan
Su, Yulan
Zhang, Sisi
Meng, Dan
Hou, Rui
IEEE TRANSACTIONS ON COMPUTER-AIDED DESIGN OF INTEGRATED CIRCUITS AND SYSTEMS, 2024, 43 (10) : 3088 - 3101
[39] ELAMD: An ensemble learning framework for adversarial malware defense
Chen, Jiaqi
Yuan, Chong
Li, Jiashuo
Tian, Donghai
Ma, Rui
Jia, Xiaoqi
JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 2023, 75
[40] A Deep Learning Approach for the Detection of Intrusions with an Ensemble Feature Selection Method
Uday Chandra Akuthota
Lava Bhargava
SN Computer Science, 5 (7)

← 1 2 3 4 5 →