Generating Practical Adversarial Network Traffic Flows Using NIDSGAN

Zolbayar, Bolor-Erdene; Sheatsley, Ryan; McDaniel, Patrick; Weisman, Michael J.; Zhu, Sencun; Zhu, Shiqun; Krishnamurthy, Srikanth V.

doi:10.48550/arxiv.2203.06694

Cited by 5 publications

(6 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…After conducting experiments, it was necessary to compare our results with the results of existing studies and models to show the effectiveness of our model. [26] and [28]. Compared with [18], we found some results close to our results, especially when using Genetic Attack.…”

Section: Comparison With Other Studiessupporting

confidence: 86%

“…For more evasive attacks, the authors in [28] proposed NIDSGAN, a GAN-based attack method, then added new terms to the loss function. The loss function decreases the distance between the real and adversarial features and the conventional loss function, which prevents the discriminator from distinguishing between adversarial and real traffic.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Resilient intrusion detection system for adversarial attacks on Low-Rate DDoS

Droos,

Al-Haija

2023

Preprint

View full text Add to dashboard Cite

With the increase of attacks and illegal activities on networks, there has become an urgent need for systems that detect these activities and attacks and protect networks, such as intrusion detection systems that have an important role in protecting computer networks. Still, an adversarial attack has recently appeared against these systems, adversely affecting their performance. This paper proposes a framework that uses a Generative Adversarial Network (GAN) to generate adversarial instances to deceive IDS. The framework consists of two phases: building IDS models using two datasets and generating adversarial examples using GAN. Through careful evaluation, the GAN model achieves an impressive 99.9% success rate in generating samples that successfully evade intrusion detection systems, which sheds light on the potential vulnerabilities of IDSs for adversarial attacks.

show abstract

Section: Comparison With Other Studiessupporting

confidence: 86%

Section: Introductionmentioning

confidence: 99%

Resilient intrusion detection system for adversarial attacks on Low-Rate DDoS

Droos,

Al-Haija

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…It changes the following bytes from the IP header: fragmentation bytes (byte number 7 and 8), TTL byte (byte number 9), and IP checksum bytes (byte number 11 and 12). To compare the performance of our approach, we tested the perturbed samples against the packet and flow-based NIDS used in recent literature studies [51], [50], which included decision tree, random forest, support vector machine, k-nearest neighbor, and deep neural network models. The evasion rate (ER) against these ML/DL-based NIDS ranged from 70% to 99% across different attack types.…”

Section: Modifying Fragmentationmentioning

confidence: 99%

Towards Real-time Network Intrusion Detection with Image-based Sequential Packets Representation

Ghadermazi,

Shah,

Bastian

2024

IEEE Trans. Big Data

View full text Add to dashboard Cite

Machine learning (ML) and deep learning (DL) advancements have greatly enhanced anomaly detection of network intrusion detection systems (NIDS) by empowering them to analyze big data and extract patterns. ML/DL-based NIDS are trained using either flow-based or packet-based features. Flow-based NIDS are suitable for offline traffic analysis, while packet-based NIDS can analyze traffic and detect attacks in real-time. Current packet-based approaches analyze packets independently, overlooking the sequential nature of network communication. This results in biased models that exhibit increased false negatives and positives.Additionally, most literature-proposed packet-based NIDS capture only payload data, neglecting crucial information from packet headers. This oversight can impair the ability to identify header-level attacks, such as denial-of-service attacks. To address these limitations, we propose a novel artificial intelligence-enabled methodological framework for packet-based NIDS that effectively analyzes header and payload data and considers temporal connections among packets. Our framework transforms sequential packets into two-dimensional images. It then develops a convolutional neural network-based intrusion detection model to process these images and detect malicious activities. Through experiments using publicly available big datasets, we demonstrate that our framework is able to achieve high detection rates of 97.7% to 99% across different attack types and displays promising resilience against adversarial examples.

show abstract

“…A few researchers began employing simple deep learning models to detect malicious traffic. Such as, AlertNet [26], DeepNet [27], and IdsNet [28] are based on fully connected perceptrons with ReLU activation functions, batch normalization to improve training performance, and dropout to prevent overfitting. For non-differentiable models, we primarily use the decision trees (DT), Random forests (RF), XGboost (Xgb.…”

Section: Classifiersmentioning

confidence: 99%

StinAttack: A Lightweight and Effective Adversarial Attack Simulation to Ensemble IDSs for Satellite- Terrestrial Integrated Network

Zhuang

Sun

Zhang

et al. 2022

2022 IEEE Symposium on Computers and Communications (ISCC)

View full text Add to dashboard Cite

Despite being widely used in network intrusion detection systems (NIDSs), machine learning (ML) has proven to be highly vulnerable to adversarial attacks. White-box and black-box adversarial attacks of NIDS have been explored in several studies. However, white-box attacks unrealistically assume that the attackers have full knowledge of the target NIDSs. Meanwhile, existing black-box attacks can not achieve high attack success rate due to the weak adversarial transferability between models (e.g., neural networks and tree models). Additionally, neither of them explains why adversarial examples exist and why they can transfer across models. To address these challenges, this paper introduces ETA, an Explainable Transfer-based Black-Box Adversarial Attack framework. ETA aims to achieve two primary objectives: 1) create transferable adversarial examples applicable to various ML models and 2) provide insights into the existence of adversarial examples and their transferability within NIDSs. Specifically, we first provide a general transfer-based adversarial attack method applicable across the entire ML space. Following that, we exploit a unique insight based on cooperative game theory and perturbation interpretations to explain adversarial examples and adversarial transferability. On this basis, we propose an Important-Sensitive Feature Selection (ISFS) method to guide the search for adversarial examples, achieving stronger transferability and ensuring traffic-space constraints. Finally, the experimental results on two NIDSs datasets show that our method performs significantly effectively against several classical and state-of-the-art ML classifiers, outperforming the latest baselines. We conduct three interpretation experiments and two cases to verify our interpretation method's correctness. Meanwhile, we uncover two major misconceptions about applying machine learning to NIDSs systems.

show abstract

Generating Practical Adversarial Network Traffic Flows Using NIDSGAN

Cited by 5 publications

References 30 publications

Resilient intrusion detection system for adversarial attacks on Low-Rate DDoS

Resilient intrusion detection system for adversarial attacks on Low-Rate DDoS

Towards Real-time Network Intrusion Detection with Image-based Sequential Packets Representation

StinAttack: A Lightweight and Effective Adversarial Attack Simulation to Ensemble IDSs for Satellite- Terrestrial Integrated Network

Contact Info

Product

Resources

About