Steve Muller scite author profile

Steve Muller

5Publications

62Citation Statements Received

60Citation Statements Given

How they've been cited

How they cite others

Affiliations

Itrust Consulting, University of Luxembourg

Publications

Order By: Most citations

A training-resistant anomaly detection system

Muller

Lancrenon

Harpes

et al. 2018

Computers & Security

View full text Add to dashboard Cite

Modern network intrusion detection systems rely on machine learning techniques to detect trac anomalies and thus intruders. However, the ability to learn the network behaviour in real-time comes at a cost: malicious software can interfere with the learning process, and teach the intrusion detection system to accept dangerous trac. This paper presents an intrusion detection system (IDS) that is able to detect common network attacks including but not limited to, denial-of-service, bot nets, intrusions, and network scans. With the help of the proposed example IDS, we show to what extent the training attack (and more sophisticated variants of it) has an impact on machine-learning based detection schemes, and how it can be detected.

show abstract

<title>Characterization of high-resolution liquid crystal displays for medical images</title>

Blume¹,

Steven²,

Cobb³

et al. 2002

View full text Add to dashboard Cite

Bridging Two Worlds: Reconciling Practical Risk Assessment Methodologies with Theory of Attack Trees

Gadyatskaya

Harpes

Mauw

et al. 2016

View full text Add to dashboard Cite

Security risk treatment often requires a complex cost-benefit analysis to be carried out in order to select countermeasures that optimally reduce risks while having minimal costs. According to ISO/IEC 27001, risk treatment relies on catalogues of countermeasures, and the analysts are expected to estimate the residual risks. At the same time, recent advancements in attack tree theory provide elegant solutions to this optimization problem. In this paper we propose to bridge the gap between these two worlds by introducing optimal countermeasure selection problem on attack-defense trees into the TRICK security risk assessment methodology.

show abstract

Efficiently computing the likelihoods of cyclically interdependent risk scenarios

Muller¹,

Harpes²,

Traon³

et al. 2017

Computers & Security

View full text Add to dashboard Cite

Search-based test and improvement of machine-learning-based anomaly detection systems

Cordy

Muller²,

Papadakis

et al. 2019

View full text Add to dashboard Cite

Machine-learning-based anomaly detection systems can be vulnerable to new kinds of deceptions, known as training attacks, which exploit the live learning mechanism of these systems by progressively injecting small portions of abnormal data. The injected data seamlessly swift the learned states to a point where harmful data can pass unnoticed. We focus on the systematic testing of these attacks in the context of intrusion detection systems (IDS). We propose a search-based approach to test IDS by making training attacks. Going a step further, we also propose searching for countermeasures, learning from the successful attacks and thereby increasing the resilience of the tested IDS. We evaluate our approach on a denial-of-service attack detection scenario and a dataset recording the network traffic of a real-world system. Our experiments show that our search-based attack scheme generates successful attacks bypassing the current state-of-the-art defences. We also show that our approach is capable of generating attack patterns for all configuration states of the studied IDS and that it is capable of providing appropriate countermeasures. By co-evolving our attack and defence mechanisms we succeeded at improving the defence of the IDS under test by making it resilient to 49 out of 50 independently generated attacks. CCS CONCEPTS • Security and privacy → Intrusion detection systems; • Software and its engineering → Software testing and debugging.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Steve Muller

A training-resistant anomaly detection system

<title>Characterization of high-resolution liquid crystal displays for medical images</title>

Bridging Two Worlds: Reconciling Practical Risk Assessment Methodologies with Theory of Attack Trees

Efficiently computing the likelihoods of cyclically interdependent risk scenarios

Search-based test and improvement of machine-learning-based anomaly detection systems

Contact Info

Product

Resources

About