A Framework for Generating Evasion Attacks for Machine Learning Based Network Intrusion Detection Systems

被引:0
|
作者
Mogg, Raymond [1 ]
Enoch, Simon Yusuf [1 ,2 ]
Kim, Dong Seong [1 ]
机构
[1] Univ Queensland, St Lucia, Qld 4072, Australia
[2] Fed Univ, Kashere, Gombe State, Nigeria
来源
INFORMATION SECURITY APPLICATIONS | 2021年 / 13009卷
关键词
Adversarial machine learning; Evasion attacks; Genetic algorithms; Intrusion detection;
D O I
10.1007/978-3-030-89432-0_5
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Intrusion Detection System (IDS) plays a vital role in detecting anomalies and cyber-attacks in networked systems. However, sophisticated attackers can manipulate the IDS' attacks samples to evade possible detection. In this paper, we present a network-based IDS and investigate the viability of generating interpretable evasion attacks against the IDS through the application of a machine learning technique and an evolutionary algorithm. We employ a genetic algorithm to generate optimal attack features for certain attack categories, which are evaluated against a decision tree-based IDS in terms of their fitness measurements. To demonstrate the feasibility of our approach, we perform experiments based on the NSL-KDD dataset and analyze the algorithm performance.
引用
收藏
页码:51 / 63
页数:13
相关论文
共 50 条
  • [31] Machine Learning based Intrusion Detection System for Web-Based Attacks
    Sharma, Sushant
    Zavarsky, Pavol
    Butakov, Sergey
    2020 IEEE 6TH INT CONFERENCE ON BIG DATA SECURITY ON CLOUD (BIGDATASECURITY) / 6TH IEEE INT CONFERENCE ON HIGH PERFORMANCE AND SMART COMPUTING, (HPSC) / 5TH IEEE INT CONFERENCE ON INTELLIGENT DATA AND SECURITY (IDS), 2020, : 227 - 230
  • [32] A topological data analysis approach for detecting data poisoning attacks against machine learning based network intrusion detection systems
    Monkam, Galamo F.
    De Lucia, Michael J.
    Bastian, Nathaniel D.
    COMPUTERS & SECURITY, 2024, 144
  • [33] Semi-supervised machine learning framework for network intrusion detection
    Li, Jieling
    Zhang, Hao
    Liu, Yanhua
    Liu, Zhihuang
    JOURNAL OF SUPERCOMPUTING, 2022, 78 (11): : 13122 - 13144
  • [34] Semi-supervised machine learning framework for network intrusion detection
    Jieling Li
    Hao Zhang
    Yanhua Liu
    Zhihuang Liu
    The Journal of Supercomputing, 2022, 78 : 13122 - 13144
  • [35] A Review of Intrusion Detection Systems Using Machine Learning: Attacks, Algorithms and Challenges
    Luis Gutierrez-Garcia, Jose
    Sanchez-DelaCruz, Eddy
    del Pilar Pozos-Parra, Maria
    ADVANCES IN INFORMATION AND COMMUNICATION, FICC, VOL 2, 2023, 652 : 59 - 78
  • [36] A Survey on Network Attacks and Intrusion Detection Systems
    Latha, S.
    Prakash, Sinthu Janita
    2017 4TH INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING AND COMMUNICATION SYSTEMS (ICACCS), 2017,
  • [37] Anomaly-Based Intrusion Detection by Machine Learning: A Case Study on Probing Attacks to an Institutional Network
    Tufan, Emrah
    Tezcan, Cihangir
    Acarturk, Cengiz
    IEEE ACCESS, 2021, 9 : 50078 - 50092
  • [38] Generating practical adversarial examples against learning-based network intrusion detection systems
    Kumar, Vivek
    Kumar, Kamal
    Singh, Maheep
    ANNALS OF TELECOMMUNICATIONS, 2025, 80 (3-4) : 209 - 226
  • [39] The Cross-Evaluation of Machine Learning-Based Network Intrusion Detection Systems
    Apruzzese, Giovanni
    Pajola, Luca
    Conti, Mauro
    IEEE TRANSACTIONS ON NETWORK AND SERVICE MANAGEMENT, 2022, 19 (04): : 5152 - 5169
  • [40] Machine learning based framework for network intrusion detection system using stacking ensemble technique
    Parashar, Anshu
    Saggu, Kuljot Singh
    Garg, Anupam
    INDIAN JOURNAL OF ENGINEERING AND MATERIALS SCIENCES, 2022, 29 (04) : 509 - 518
12345