Min-max Training: Adversarially Robust Learning Models for Network Intrusion Detection Systems

Research Output

Intrusion detection systems are integral to the security of networked systems for detecting malicious or anomalous network traffic. As traditional approaches are becoming less effective, machine learning and deep learning-based intrusion detection systems are vital research areas for improved detection systems. Past research into computer vision using deep learning revealed that the deep learning-based classifiers themselves are vulnerable to adversarial attacks, and these attacks have been investigated extensively. However, adversarial attacks are restricted not only to the domain of image recognition. As indicated by previous research, various domains employing machine learning/deep learning classifiers are vulnerable to attack. Our work evaluates the effectiveness of adversarial robustness training when applied to intrusion detection systems based on deep learning classification models. We propose a novel, simple adversarial retraining method to build models robust to adversarial evasion attacks.

Date:

10 February 2022
Publication Status:

Published
Publisher

IEEE
DOI:

10.1109/sin54109.2021.9699157
Cross Ref:

10.1109/sin54109.2021.9699157
Funders:

Edinburgh Napier Funded

http://researchrepository.napier.ac.uk/output/2844836 <p>Grierson, S., Thomson, C., Papadopoulos, P., & Buchanan, B. (2022). Min-max Training: Adversarially Robust Learning Models for Network Intrusion Detection Systems. In <i>2021 14th International Conference on Security of Information and Networks (SIN)</i>. https://doi.org/10.1109/sin54109.2021.9699157</p>

Citation

Grierson, S., Thomson, C., Papadopoulos, P., & Buchanan, B. (2022). Min-max Training: Adversarially Robust Learning Models for Network Intrusion Detection Systems. In 2021 14th International Conference on Security of Information and Networks (SIN). https://doi.org/10.1109/sin54109.2021.9699157