Conference Proceedings

Antidote: Understanding and defending against poisoning of anomaly detectors

BIP Rubinstein, B Nelson, L Huang, AD Joseph, SH Lau, S Rao, N Taft, JD Tygar

Proceedings of the ACM SIGCOMM Internet Measurement Conference IMC | Published : 2009

DOI: 10.1145/1644893.1644895

Abstract

Statistical machine learning techniques have recently garnered increased popularity as a means to improve network design and security. For intrusion detection, such methods build a model for normal behavior from training data and detect attacks as deviations from that model. This process invites adversaries to manipulate the training data so that the learned model fails to detect subsequent attacks. We evaluate poisoning techniques and develop a defense, in the context of a particular anomaly detector-namely the PCA-subspace method for detecting anomalies in backbone networks. For three poisoning schemes, we show how attackers can substantially increase their chance of successfully evading d..

View full abstract

University of Melbourne Researchers

Grants

Awarded by Direct For Computer & Info Scie & Enginr; Division of Computing and Communication Foundations

Citation metrics

291Scopus
174Web of Science
244Dimensions

Keywords

4604 Cybersecurity and Privacy
Adversarial Learning
Robust Statistics
Networking and Information Technology R&d (nitrd)
Principal Components Analysis
Network Traffic Analysis
Computer Science, Theory & Methods
Computer Science
Machine Learning and Artificial Intelligence
Science & Technology
46 Information and Computing Sciences
Technology