Intrinsic weaknesses of IDSs to malicious adversarial attacks and their mitigation - Département Informatique et Réseaux Access content directly
Journal Articles Communications in Computer and Information Science Year : 2023

Intrinsic weaknesses of IDSs to malicious adversarial attacks and their mitigation

Abstract

Intrusion Detection Systems (IDS) are essential tools to protect network security from malicious traffic. IDS have recently made significant advancements in their detection capabilities through deep learning algorithms compared to conventional approaches. However, these algorithms are vulnerable to meta-attacks, also known as adversarial evasion attacks, which are attacks that improve already existing attacks, specifically their ability to evade detection. Deep learning-based IDS, in particular, are particularly susceptible to adversarial evasion attacks that use Generative Adversarial Networks (GAN). Nonetheless, well-known strategies have been proposed to cope with this threat. However, these countermeasures lack robustness and predictability, and their performance can be either remarkable or poor. Such robustness issues have been identified even without adversarial evasion attacks, and mitigation strategies have been provided. This paper identifies and formalizes threats to the robustness of IDSs against adversarial evasion attacks. These threats are enabled by flaws in the dataset's structure and content rather than its representativeness. In addition, we propose a method for enhancing the performance of adversarial training by directing it to focus on the best evasion candidates samples within a dataset. We find that GAN adversarial attack evasion capabilities are significantly reduced when our method is used to strengthen the IDS.
Fichier principal
Vignette du fichier
CCIS_paper (10).pdf (317.7 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-04320964 , version 1 (04-12-2023)

Identifiers

Cite

Hassan Chaitou, Thomas Robert, Jean Leneutre, Laurent Pautet. Intrinsic weaknesses of IDSs to malicious adversarial attacks and their mitigation. Communications in Computer and Information Science, 2023, Communications in Computer and Information Science, 1849, pp.122-155. ⟨10.1007/978-3-031-45137-9_6⟩. ⟨hal-04320964⟩
38 View
10 Download

Altmetric

Share

Gmail Facebook X LinkedIn More