An adaptive randomized and secured approach against adversarial attacks

Information Security Journal: A Global Perspective Pub Date : 2022-07-01 DOI:10.1080/19393555.2022.2088429

Lovi Dhamija, Urvashi Garg

{"title":"An adaptive randomized and secured approach against adversarial attacks","authors":"Lovi Dhamija, Urvashi Garg","doi":"10.1080/19393555.2022.2088429","DOIUrl":null,"url":null,"abstract":"ABSTRACT With the rising trends and use of machine learning algorithms for classification and regression tasks, deep learning has been widely accepted in the Cyber and as well as non-Cyber Domain. Recent researches have shown that machine learning classifiers such as Deep Neural Networks (DNN) can be used to improve the detection against adversarial samples as well as to detect malware in the cyber security domain. However, a recent study in deep learning has found that DNN classifiers are highly vulnerable and can be evaded simply by either performing small modifications in the training model or training data. The work proposed a randomized defensive mechanism with the use of generative adversarial networks to construct more adversaries and then defend against them. Interestingly, we encountered some open challenges highlighting common difficulties faced by defensive mechanisms. We provide a general overview of adversarial attacks and proposed an Adaptive Randomized Algorithm to enhance the robustness of models. Moreover, this work aimed to ensure the security and transferability of deep learning classifiers.","PeriodicalId":103842,"journal":{"name":"Information Security Journal: A Global Perspective","volume":"17 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Security Journal: A Global Perspective","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1080/19393555.2022.2088429","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

ABSTRACT With the rising trends and use of machine learning algorithms for classification and regression tasks, deep learning has been widely accepted in the Cyber and as well as non-Cyber Domain. Recent researches have shown that machine learning classifiers such as Deep Neural Networks (DNN) can be used to improve the detection against adversarial samples as well as to detect malware in the cyber security domain. However, a recent study in deep learning has found that DNN classifiers are highly vulnerable and can be evaded simply by either performing small modifications in the training model or training data. The work proposed a randomized defensive mechanism with the use of generative adversarial networks to construct more adversaries and then defend against them. Interestingly, we encountered some open challenges highlighting common difficulties faced by defensive mechanisms. We provide a general overview of adversarial attacks and proposed an Adaptive Randomized Algorithm to enhance the robustness of models. Moreover, this work aimed to ensure the security and transferability of deep learning classifiers.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

一种针对对抗性攻击的自适应随机安全方法

随着机器学习算法在分类和回归任务中的应用的兴起，深度学习在网络领域和非网络领域都得到了广泛的接受。最近的研究表明，机器学习分类器，如深度神经网络(DNN)，可以用来提高对对抗性样本的检测，以及在网络安全领域检测恶意软件。然而，最近一项关于深度学习的研究发现，DNN分类器非常容易受到攻击，只要对训练模型或训练数据进行微小的修改，就可以避免DNN分类器的攻击。这项工作提出了一种随机防御机制，使用生成对抗网络来构建更多的对手，然后对它们进行防御。有趣的是，我们遇到了一些公开的挑战，突出了防御机制面临的共同困难。我们提供了对抗性攻击的总体概述，并提出了一种自适应随机算法来增强模型的鲁棒性。此外，本工作旨在确保深度学习分类器的安全性和可移植性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Information Security Journal: A Global Perspective

自引率

0.00%

发文量