Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review

Detalhes bibliográficos
Autor(a) principal: Martins, Nuno
Data de Publicação: 2020
Outros Autores: Cruz, Jose Magalhaes, Cruz, Tiago, Abreu, Pedro Henriques
Tipo de documento: Artigo
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10316/106148
https://doi.org/10.1109/ACCESS.2020.2974752
Resumo: Cyber-security is the practice of protecting computing systems and networks from digital attacks, which are a rising concern in the Information Age. With the growing pace at which new attacks are developed, conventional signature based attack detection methods are often not enough, and machine learning poses as a potential solution. Adversarial machine learning is a research area that examines both the generation and detection of adversarial examples, which are inputs specially crafted to deceive classi ers, and has been extensively studied speci cally in the area of image recognition, where minor modi cations are performed on images that cause a classi er to produce incorrect predictions. However, in other elds, such as intrusion and malware detection, the exploration of such methods is still growing. The aim of this survey is to explore works that apply adversarial machine learning concepts to intrusion and malware detection scenarios. We concluded that a wide variety of attacks were tested and proven effective in malware and intrusion detection, although their practicality was not tested in intrusion scenarios. Adversarial defenses were substantially less explored, although their effectiveness was also proven at resisting adversarial attacks. We also concluded that, contrarily to malware scenarios, the variety of datasets in intrusion scenarios is still very small, with the most used dataset being greatly outdated.
id RCAP_8eaf3a87cecea70876d2ff02886a3288
oai_identifier_str oai:estudogeral.uc.pt:10316/106148
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic ReviewCybersecurityadversarial machine learningintrusion detectionmalware detectionCyber-security is the practice of protecting computing systems and networks from digital attacks, which are a rising concern in the Information Age. With the growing pace at which new attacks are developed, conventional signature based attack detection methods are often not enough, and machine learning poses as a potential solution. Adversarial machine learning is a research area that examines both the generation and detection of adversarial examples, which are inputs specially crafted to deceive classi ers, and has been extensively studied speci cally in the area of image recognition, where minor modi cations are performed on images that cause a classi er to produce incorrect predictions. However, in other elds, such as intrusion and malware detection, the exploration of such methods is still growing. The aim of this survey is to explore works that apply adversarial machine learning concepts to intrusion and malware detection scenarios. We concluded that a wide variety of attacks were tested and proven effective in malware and intrusion detection, although their practicality was not tested in intrusion scenarios. Adversarial defenses were substantially less explored, although their effectiveness was also proven at resisting adversarial attacks. We also concluded that, contrarily to malware scenarios, the variety of datasets in intrusion scenarios is still very small, with the most used dataset being greatly outdated.IEEE2020info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/articlehttp://hdl.handle.net/10316/106148http://hdl.handle.net/10316/106148https://doi.org/10.1109/ACCESS.2020.2974752eng2169-3536Martins, NunoCruz, Jose MagalhaesCruz, TiagoAbreu, Pedro Henriquesinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-03-22T21:34:35Zoai:estudogeral.uc.pt:10316/106148Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T21:22:36.629920Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
title Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
spellingShingle Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
Martins, Nuno
Cybersecurity
adversarial machine learning
intrusion detection
malware detection
title_short Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
title_full Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
title_fullStr Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
title_full_unstemmed Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
title_sort Adversarial Machine Learning Applied to Intrusion and Malware Scenarios: A Systematic Review
author Martins, Nuno
author_facet Martins, Nuno
Cruz, Jose Magalhaes
Cruz, Tiago
Abreu, Pedro Henriques
author_role author
author2 Cruz, Jose Magalhaes
Cruz, Tiago
Abreu, Pedro Henriques
author2_role author
author
author
dc.contributor.author.fl_str_mv Martins, Nuno
Cruz, Jose Magalhaes
Cruz, Tiago
Abreu, Pedro Henriques
dc.subject.por.fl_str_mv Cybersecurity
adversarial machine learning
intrusion detection
malware detection
topic Cybersecurity
adversarial machine learning
intrusion detection
malware detection
description Cyber-security is the practice of protecting computing systems and networks from digital attacks, which are a rising concern in the Information Age. With the growing pace at which new attacks are developed, conventional signature based attack detection methods are often not enough, and machine learning poses as a potential solution. Adversarial machine learning is a research area that examines both the generation and detection of adversarial examples, which are inputs specially crafted to deceive classi ers, and has been extensively studied speci cally in the area of image recognition, where minor modi cations are performed on images that cause a classi er to produce incorrect predictions. However, in other elds, such as intrusion and malware detection, the exploration of such methods is still growing. The aim of this survey is to explore works that apply adversarial machine learning concepts to intrusion and malware detection scenarios. We concluded that a wide variety of attacks were tested and proven effective in malware and intrusion detection, although their practicality was not tested in intrusion scenarios. Adversarial defenses were substantially less explored, although their effectiveness was also proven at resisting adversarial attacks. We also concluded that, contrarily to malware scenarios, the variety of datasets in intrusion scenarios is still very small, with the most used dataset being greatly outdated.
publishDate 2020
dc.date.none.fl_str_mv 2020
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/article
format article
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10316/106148
http://hdl.handle.net/10316/106148
https://doi.org/10.1109/ACCESS.2020.2974752
url http://hdl.handle.net/10316/106148
https://doi.org/10.1109/ACCESS.2020.2974752
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 2169-3536
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.publisher.none.fl_str_mv IEEE
publisher.none.fl_str_mv IEEE
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1817550943258935296

Registros relacionados