Computer Science > Cryptography and Security
[Submitted on 3 Dec 2019 (v1), revised 30 May 2020 (this version, v3), latest version 23 Feb 2021 (v5)]
Title:Cost-Aware Robust Tree Ensembles for Security Applications
View PDFAbstract:Features of security classifiers have various costs to be manipulated. The costs are asymmetric across features and to the directions of changes, which cannot be precisely captured by existing cost models based on $L_p$-norm robustness. In this paper, we utilize such domain knowledge to increase the evasion cost against security classifiers, specifically, tree ensemble models that are widely used by security tasks. We propose a new cost modeling method to capture the domain knowledge of features as constraint, and then we integrate the cost-driven constraint into the node construction process to train robust tree ensembles. During the training process, we use the constraint to find data points that are likely to be perturbed given the costs of the features, and we optimize the quality of the trees using a new robust training algorithm. Our cost-aware training method can be applied to different types of tree ensembles, including random forest model that cannot be robustly trained by previous methods. Using twitter spam detection as the security application, our evaluation results show that training cost-aware robust model can rank high cost features as the most important ones, and increase the adaptive attack cost by 6.4X compared to the baseline. Our code is available at this https URL.
Submission history
From: Yizheng Chen [view email][v1] Tue, 3 Dec 2019 02:02:59 UTC (473 KB)
[v2] Thu, 21 May 2020 22:06:14 UTC (373 KB)
[v3] Sat, 30 May 2020 18:04:40 UTC (373 KB)
[v4] Tue, 8 Dec 2020 15:38:15 UTC (901 KB)
[v5] Tue, 23 Feb 2021 02:07:27 UTC (2,284 KB)
References & Citations
Bibliographic and Citation Tools
Bibliographic Explorer (What is the Explorer?)
Litmaps (What is Litmaps?)
scite Smart Citations (What are Smart Citations?)
Code, Data and Media Associated with this Article
CatalyzeX Code Finder for Papers (What is CatalyzeX?)
DagsHub (What is DagsHub?)
Gotit.pub (What is GotitPub?)
Papers with Code (What is Papers with Code?)
ScienceCast (What is ScienceCast?)
Demos
Recommenders and Search Tools
Influence Flower (What are Influence Flowers?)
Connected Papers (What is Connected Papers?)
CORE Recommender (What is CORE?)
arXivLabs: experimental projects with community collaborators
arXivLabs is a framework that allows collaborators to develop and share new arXiv features directly on our website.
Both individuals and organizations that work with arXivLabs have embraced and accepted our values of openness, community, excellence, and user data privacy. arXiv is committed to these values and only works with partners that adhere to them.
Have an idea for a project that will add value for arXiv's community? Learn more about arXivLabs.