research-article

Security Evaluation of PatternClassifiers under Attack

Authors:

Battista Biggio,

Giorgio Fumera,

Fabio RoliAuthors Info & Claims

IEEE Transactions on Knowledge and Data Engineering, Volume 26, Issue 4

Pages 984 - 996

https://doi.org/10.1109/TKDE.2013.57

Published: 01 April 2014 Publication History

Abstract

Pattern classification systems are commonly used in adversarial applications, like biometric authentication, network intrusion detection, and spam filtering, in which data can be purposely manipulated by humans to undermine their operation. As this adversarial scenario is not taken into account by classical design methods, pattern classification systems may exhibit vulnerabilities, whose exploitation may severely affect their performance, and consequently limit their practical utility. Extending pattern classification theory and design methods to adversarial settings is thus a novel and very relevant research direction, which has not yet been pursued in a systematic way. In this paper, we address one of the main open issues: evaluating at design phase the security of pattern classifiers, namely, the performance degradation under potential attacks they may incur during operation. We propose a framework for empirical evaluation of classifier security that formalizes and generalizes the main ideas proposed in the literature, and give examples of its use in three real applications. Reported results show that security evaluation can provide a more complete understanding of the classifier’s behavior in adversarial environments, and lead to better design choices.

Cited By

View all

Liu RMatuszek CNicholas C(2024)An Efficient PDF Malware Detection Method Using Highly Compact FeaturesProceedings of the ACM Symposium on Document Engineering 202410.1145/3685650.3685668(1-4)Online publication date: 20-Aug-2024
https://dl.acm.org/doi/10.1145/3685650.3685668
Zhang CTang Z(2024)Novel poisoning attacks for clustering methods via robust feature generationNeurocomputing10.1016/j.neucom.2024.127925598:COnline publication date: 14-Sep-2024
https://dl.acm.org/doi/10.1016/j.neucom.2024.127925
Xu XZang SBilal MXu XDou W(2024)Intelligent architecture and platforms for private edge cloud systemsFuture Generation Computer Systems10.1016/j.future.2024.06.024160:C(457-471)Online publication date: 1-Nov-2024
https://dl.acm.org/doi/10.1016/j.future.2024.06.024
Show More Cited By

Security Evaluation of PatternClassifiers under Attack
1. Computing methodologies
  1. Machine learning
    1. Learning paradigms
      1. Supervised learning
2. Social and professional topics
  1. Computing / technology policy

Recommendations

A Distributed Security Approach against ARP Cache Poisoning Attack
CySSS '22: Proceedings of the 1st Workshop on Cybersecurity and Social Sciences

The Address Resolution Protocol (ARP) has a critical function in the Internet protocol suite, however, it was not designed for security as it does not verify that a response to an ARP request really comes from an authorized party. This weak point in the ...
Evaluation of TFTP DDoS amplification attack

Web threats are becoming a major issue for both governments and companies. Generally, web threats increased as much as 600% during last year (WebSense, 2013). This appears to be a significant issue, since many major businesses seem to provide these ...
Efficient Evaluation of Security against Generalized Interpolation Attack
SAC '99: Proceedings of the 6th Annual International Workshop on Selected Areas in Cryptography

Interpolation attack was presented by Jakobsen and Knudsen at FSE'97. Interpolation attack is effective against ciphers that have a certain algebraic structure like the PURE cipher which is a prototype cipher, but it is difficult to apply the attack to ...

Comments

Information & Contributors

Information

Published In

cover image IEEE Transactions on Knowledge and Data Engineering

IEEE Transactions on Knowledge and Data Engineering Volume 26, Issue 4

April 2014

259 pages

ISSN:1041-4347

Issue’s Table of Contents

Publisher

IEEE Educational Activities Department

United States

Publication History

Published: 01 April 2014

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

98
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 01 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Liu RMatuszek CNicholas C(2024)An Efficient PDF Malware Detection Method Using Highly Compact FeaturesProceedings of the ACM Symposium on Document Engineering 202410.1145/3685650.3685668(1-4)Online publication date: 20-Aug-2024
https://dl.acm.org/doi/10.1145/3685650.3685668
Zhang CTang Z(2024)Novel poisoning attacks for clustering methods via robust feature generationNeurocomputing10.1016/j.neucom.2024.127925598:COnline publication date: 14-Sep-2024
https://dl.acm.org/doi/10.1016/j.neucom.2024.127925
Xu XZang SBilal MXu XDou W(2024)Intelligent architecture and platforms for private edge cloud systemsFuture Generation Computer Systems10.1016/j.future.2024.06.024160:C(457-471)Online publication date: 1-Nov-2024
https://dl.acm.org/doi/10.1016/j.future.2024.06.024
Qu YHuang SYao Y(2024)A survey on robustness attacks for deep code modelsAutomated Software Engineering10.1007/s10515-024-00464-731:2Online publication date: 1-Nov-2024
https://dl.acm.org/doi/10.1007/s10515-024-00464-7
Doan BNguyen DMontague PAbraham TDe Vel OCamtepe SKanhere SAbbasnejad ERanasinghe D(2024)Bayesian Learned Models Can Detect Adversarial Malware for FreeComputer Security – ESORICS 202410.1007/978-3-031-70879-4_3(45-65)Online publication date: 16-Sep-2024
https://dl.acm.org/doi/10.1007/978-3-031-70879-4_3
Liu SCullen AMontague PErfani SRubinstein BWilliams BChen YNeville J(2023)Enhancing the antidoteProceedings of the Thirty-Seventh AAAI Conference on Artificial Intelligence and Thirty-Fifth Conference on Innovative Applications of Artificial Intelligence and Thirteenth Symposium on Educational Advances in Artificial Intelligence10.1609/aaai.v37i7.26065(8861-8869)Online publication date: 7-Feb-2023
https://dl.acm.org/doi/10.1609/aaai.v37i7.26065
Doan BYang SMontague PDe Vel OAbraham TCamtepe SKanhere SAbbasnejad ERanasinghe DWilliams BChen YNeville J(2023)Feature-space Bayesian adversarial learning improved malware detector robustnessProceedings of the Thirty-Seventh AAAI Conference on Artificial Intelligence and Thirty-Fifth Conference on Innovative Applications of Artificial Intelligence and Thirteenth Symposium on Educational Advances in Artificial Intelligence10.1609/aaai.v37i12.26727(14783-14791)Online publication date: 7-Feb-2023
https://dl.acm.org/doi/10.1609/aaai.v37i12.26727
Ilbert RHoang TZhang ZPalpanas TBlanc GTakahashi TZhang Z(2023)Breaking Boundaries: Balancing Performance and Robustness in Deep Wireless Traffic ForecastingProceedings of the 2023 Workshop on Recent Advances in Resilient and Trustworthy ML Systems in Autonomous Networks10.1145/3605772.3624002(17-28)Online publication date: 30-Nov-2023
https://dl.acm.org/doi/10.1145/3605772.3624002
Wang SKo RBai GDong NChoi TZhang Y(2023)Evasion Attack and Defense on Machine Learning Models in Cyber-Physical Systems: A SurveyIEEE Communications Surveys & Tutorials10.1109/COMST.2023.334480826:2(930-966)Online publication date: 20-Dec-2023
https://dl.acm.org/doi/10.1109/COMST.2023.3344808
Xiao JDai QXie XLam JKwok K(2023)Adversarially regularized graph attention networks for inductive learning on partially labeled graphsKnowledge-Based Systems10.1016/j.knosys.2023.110456268:COnline publication date: 23-May-2023
https://dl.acm.org/doi/10.1016/j.knosys.2023.110456
Show More Cited By

View Options

View options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

Cited By

Recommendations

A Distributed Security Approach against ARP Cache Poisoning Attack

Evaluation of TFTP DDoS amplification attack

Efficient Evaluation of Security against Generalized Interpolation Attack

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations