CINECA IRIS Institutional Research Information System

Establishing the robustness of classifiers against adversarial attacks is crucial in many applications of Machine Learning to Cybersecurity. This paper focuses on evasion attacks, where inputs are selected or modified to evade detection by a learned model under gray-box scenarios, with only partial adversarial knowledge of the classifier. We generalize the adversarial failure rate metric into a continuous curve, by trading it off against the false positive rate for threshold classifiers, analogous to the receiver operating characteristic (ROC) curve. Subsequently, we propose two novel keyed randomization methods, and a moving target defense strategy. We evaluate the proposed methods using two publicly available intrusion detection datasets (BETH-2021 and Kyoto-2015), demonstrating consistently superior results relative to other randomization techniques.

Keyed randomization with adversarial failure curves and moving target defense

Francesco Bergadano^First;Sandeep Gupta;Bruno Crispo

2025-01-01

Abstract

Establishing the robustness of classifiers against adversarial attacks is crucial in many applications of Machine Learning to Cybersecurity. This paper focuses on evasion attacks, where inputs are selected or modified to evade detection by a learned model under gray-box scenarios, with only partial adversarial knowledge of the classifier. We generalize the adversarial failure rate metric into a continuous curve, by trading it off against the false positive rate for threshold classifiers, analogous to the receiver operating characteristic (ROC) curve. Subsequently, we propose two novel keyed randomization methods, and a moving target defense strategy. We evaluate the proposed methods using two publicly available intrusion detection datasets (BETH-2021 and Kyoto-2015), demonstrating consistently superior results relative to other randomization techniques.

Scheda breve

Scheda completa

Scheda completa (DC)

	Anno
	
				2025
			
	Titolo dell'evento
	
				5th Intelligent Cybersecurity Conference (ICSC)
			
	Luogo dell'evento
	
				Tampa, Florida, USA
			
	Data dell'evento
	
				19-22 May, 2025
			
	Titolo del volume
	
				5th Intelligent Cybersecurity Conference (ICSC)
			
	Nome editore
	
				IEEE
			
	Pagine (da)
	
				169
			
	Pagine (a)
	
				176
			
	Codice ISBN
	
				979-8-3503-9293-7
			
	DOI
	
				https://dx.doi.org/10.1109/ICSC65596.2025.11140525
			
	Parole Chiave
	
				Adversarial evasion, AUROC, Evasion Resistance Metrics, Randomization, Moving Target Defense
			
	Tutti gli autori
	
						Francesco Bergadano, Sandeep Gupta, Bruno Crispo
					
	Appare nelle tipologie:
	
				04A-Conference paper in volume

File in questo prodotto:

File	Dimensione	Formato
icscAuth.pdf Accesso riservato Tipo di file: PREPRINT (PRIMA BOZZA) Dimensione 2.02 MB Formato Adobe PDF Visualizza/Apri Richiedi una copia	2.02 MB	Adobe PDF	Visualizza/Apri Richiedi una copia

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2318/2094092

Citazioni

ND

0

ND

social impact