Feature Importance-Based Backdoor Attack in NSL-KDD
-
Published:2023-12-09
Issue:24
Volume:12
Page:4953
-
ISSN:2079-9292
-
Container-title:Electronics
-
language:en
-
Short-container-title:Electronics
Author:
Jang Jinhyeok1ORCID, An Yoonsoo2, Kim Dowan2, Choi Daeseon1
Affiliation:
1. Department of Computer Science and Engineering, Graduate School of Soongsil University, Sadang-ro 50, Seoul 07027, Republic of Korea 2. Cyber Security Research Center, Graduate School of Soongsil University, Sadang-ro 50, Seoul 07027, Republic of Korea
Abstract
In this study, we explore the implications of advancing AI technology on the safety of machine learning models, specifically in decision-making across diverse applications. Our research delves into the domain of network intrusion detection, covering rule-based and anomaly-based detection methods. There is a growing interest in anomaly detection within network intrusion detection systems, accompanied by an increase in adversarial attacks using maliciously crafted examples. However, the vulnerability of intrusion detection systems to backdoor attacks, a form of adversarial attack, is frequently overlooked in untrustworthy environments. This paper proposes a backdoor attack scenario, centering on the “AlertNet” intrusion detection model and utilizing the NSL-KDD dataset, a benchmark widely employed in NIDS research. The attack involves modifying features at the packet level, as network datasets are typically constructed from packets using statistical methods. Evaluation metrics include accuracy, attack success rate, baseline comparisons with clean and random data, and comparisons involving the proposed backdoor. Additionally, the study employs KL-divergence and OneClassSVM for distribution comparisons to demonstrate resilience against manual inspection by a human expert from outliers. In conclusion, the paper outlines applications and limitations and emphasizes the direction and importance of research on backdoor attacks in network intrusion detection systems.
Funder
National Research Foundation of Korea
Subject
Electrical and Electronic Engineering,Computer Networks and Communications,Hardware and Architecture,Signal Processing,Control and Systems Engineering
Reference28 articles.
1. Roesch, M. (1999, January 7–12). Snort—Lightweight Intrusion Detection for Networks. Proceedings of the LISA ’99: 13th Systems Administration Conference (LISA ’99), Washington, DC, USA. 2. A Survey of Intrusion Detection Systems in Wireless Sensor Networks;Butun;IEEE Commun. Surv. Tutor.,2013 3. Goodfellow, I.J., Shlens, J., and Szegedy, C. (2015, January 7–9). Explaining and Harnessing Adversarial Examples. Proceedings of the ICLR2015, San Diego, CA, USA. 4. He, K., Kim, D.D., Sun, J., Yoo, J.D., Lee, Y.H., and Kim, H.K. (2022). Liuer Mihou: A Practical Framework for Generating and Evaluating Grey-box Adversarial Attacks against NIDS. arXiv. 5. Alatwi, H.A., and Aldweesh, A. (2021, January 10–13). Adversarial Black-Box Attacks Against Network Intrusion Detection Systems: A Survey. Proceedings of the 2021 IEEE World AI IoT Congress (AIIoT), Seattle, DC, USA.
|
|