Generation of Adversarial Examples to Prevent Misclassification of Deep Neural Network based Condition Monitoring Systems for Cyber-Physical Production Systems

Specht, Felix; Otto, J.; Niggemann, Oliver; Hammer, Barbara

doi:10.1109/indin.2018.8472060

Cited by 15 publications

(7 citation statements)

References 17 publications

(18 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Examples of works in the field of cybersecurity where an attackagnostic method has been employed include the development of an Android malware classifier that is robust to poisoning attacks 149 , evaluation of multiple attack-agnostic robustness defense methods including an ensemble of classifiers 150 , and detection of adversarial attacks for the defense of cyber-physical systems 151 . Similar to this, an attack-specific robustness defense strategy has been used in adversarial retraining against RNN classifiers for spam detection 152 and anomaly detection system of sensor data 153 . As attack-agnostic defense strategies are more general, these should be preferred and the focus of further research to solve real-world issues in the context of cybersecurity.…”

Section: Adversarial Defense Methodsmentioning

confidence: 99%

Multi‐aspects AI‐based modeling and adversarial learning for cybersecurity intelligence and robustness: A comprehensive overview

Sarker

2023

Security and Privacy

View full text Add to dashboard Cite

Due to the rising dependency on digital technology, cybersecurity has emerged as a more prominent field of research and application that typically focuses on securing devices, networks, systems, data and other resources from various cyber-attacks, threats, risks, damages, or unauthorized access. Artificial Intelligence (AI), also referred to as a crucial technology of the current Fourth Industrial Revolution (Industry 4.0 or 4IR), could be the key to intelligently dealing with these cyber issues. Various forms of AI methodologies, such as analytical, functional, interactive, textual as well as visual AI can be employed to get the desired cyber solutions according to their computational capabilities. However, the dynamic nature and complexity of real-world situations and data gathered from various cyber sources make it challenging nowadays to build an effective AI-based security model. Moreover, defending robustly against adversarial attacks is still an open question in the area. In this paper, we provide a comprehensive view on "Cybersecurity Intelligence and Robustness", emphasizing multi-aspects AI-based modeling and adversarial learning that could lead to addressing diverse issues in various cyber applications areas such as detecting malware or intrusions, zero-day attacks, phishing, data breach, cyberbullying and other cybercrimes. Thus the eventual security modeling process could be automated, intelligent, and robust compared to traditional security systems. We also emphasize and draw attention to the future aspects of cybersecurity intelligence and robustness along with the research direction within the context of our study. Overall, our goal is not only to explore AI-based modeling and pertinent methodologies but also to focus on the resulting model's applicability for securing our digital systems and society.

show abstract

Section: Adversarial Defense Methodsmentioning

confidence: 99%

Multi‐aspects AI‐based modeling and adversarial learning for cybersecurity intelligence and robustness: A comprehensive overview

Sarker

2023

Security and Privacy

View full text Add to dashboard Cite

show abstract

“…While no direct consideration of adversarial vulnerability for SHM has yet been presented in the literature, the susceptibility of data-driven approaches has already been demonstrated for the related field of process monitoring. 20 In their paper, the authors demonstrate the adversarial fragility of a deep neural network trained to detect system failures and offer an adversarial training method similar to Madry et al 21 for hardening the classifier.…”

Section: Adversarial Attacks On Pattern Recognition Modelsmentioning

confidence: 97%

On the vulnerability of data-driven structural health monitoring models to adversarial attack

Champneys

Green

Morales

et al. 2020

Structural Health Monitoring

View full text Add to dashboard Cite

Many approaches at the forefront of structural health monitoring rely on cutting-edge techniques from the field of machine learning. Recently, much interest has been directed towards the study of so-called adversarial examples; deliberate input perturbations that deceive machine learning models while remaining semantically identical. This article demonstrates that data-driven approaches to structural health monitoring are vulnerable to attacks of this kind. In the perfect information or ‘white-box’ scenario, a transformation is found that maps every example in the Los Alamos National Laboratory three-storey structure dataset to an adversarial example. Also presented is an adversarial threat model specific to structural health monitoring. The threat model is proposed with a view to motivate discussion into ways in which structural health monitoring approaches might be made more robust to the threat of adversarial attack.

show abstract

“…Specht et al [118] trained a fully connected DNN on the SECOM dataset, recorded from a semi-conductor manufacturing process, which consists of 590 attributes collected from sensor signals and variables during manufacturing cycles.…”

Section: Cyber-physical Systems and Industrial Control Systemsmentioning

confidence: 99%

“…Rosenberg et al [103] tried to defend an API call-based RNN classifier and compared their own RNN defense method, sequence squeezing, to five other defense methods inspired by existing CNN-based defense methods: adversarial retraining, statistical anomalous subsequences, defense GAN, nearest neighbor classification, and RNN ensembles. They showed that sequence squeezing provides the best trade-off between training and inference overhead (which is less critical in the computer vision domain) and the adversarial robustness.Specht et al[118] suggested an iterative adversarial retraining process to mitigate adversarial examples for semiconductor anomaly detection of sensor data. Soleymani et al[116] used wavelet domain denoising of the iris samples by investigating each wavelet sub-band and removing the sub-bands that are most affected by the adversary.…”

mentioning

confidence: 99%

Adversarial Machine Learning Attacks and Defense Methods in the Cyber Security Domain

Rosenberg¹,

Shabtai²,

Elovici³

et al. 2020

Preprint

View full text Add to dashboard Cite

In recent years, machine learning algorithms, and more specially, deep learning algorithms, have been widely used in many fields, including cyber security. However, machine learning systems are vulnerable to adversarial attacks, and this limits the application of machine learning, especially in non-stationary, adversarial environments, such as the cyber security domain, where actual adversaries (e.g., malware developers) exist. This paper comprehensively summarizes the latest research on adversarial attacks against security solutions that are based on machine learning techniques and presents the risks they pose to cyber security solutions. First, we discuss the unique challenges of implementing end-to-end adversarial attacks in the cyber security domain. Following that, we define a unified taxonomy, where the adversarial attack methods are characterized based on their stage of occurrence, and the attacker's goals and capabilities. Then, we categorize the applications of adversarial attack techniques in the cyber security domain. Finally, we use our taxonomy to shed light on gaps in the cyber security domain that have already been addressed in other adversarial learning domains and discuss their impact on future adversarial learning trends in the cyber security domain.

show abstract

Generation of Adversarial Examples to Prevent Misclassification of Deep Neural Network based Condition Monitoring Systems for Cyber-Physical Production Systems

Cited by 15 publications

References 17 publications

Multi‐aspects AI‐based modeling and adversarial learning for cybersecurity intelligence and robustness: A comprehensive overview

Multi‐aspects AI‐based modeling and adversarial learning for cybersecurity intelligence and robustness: A comprehensive overview

On the vulnerability of data-driven structural health monitoring models to adversarial attack

Adversarial Machine Learning Attacks and Defense Methods in the Cyber Security Domain

Contact Info

Product

Resources

About