Top

Published in:

2019 | OriginalPaper | Chapter

The Feasibility of Deep Learning Use for Adversarial Model Extraction in the Cybersecurity Domain

Authors : Michał Choraś, Marek Pawlicki, Rafał Kozik

Published in: Intelligent Data Engineering and Automated Learning – IDEAL 2019

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

Machine learning algorithms found their way into a surprisingly wide range of applications, providing utility and allowing for insights gathered from data in a way never before possible. Those tools, however, have not been developed with security in mind. A deployed algorithm can meet a multitude of risks in the real world. This work explores one of those risks - the feasibility of an exploratory attack geared towards stealing an algorithm used in the cybersecurity domain. The process we have used is thoroughly explained and the results are promising.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter A Genetic-Based Ensemble Learning Applied to Imbalanced Data Classification

Papernot, N., McDaniel, P., Sinha, A., Wellman, M.P.: SoK: security and privacy in machine learning. In: 2018 IEEE European Symposium on Security and Privacy (EuroS P), pp. 399–414, April 2018

Ateniese, G., Felici, G., Mancini, L.V., Spognardi, A., Villani, A., Vitali, D.: Hacking smart machines with smarter ones: how to extract meaningful data from machine learning classifiers. CoRR, abs/1306.4447 (2013)

Chakraborty, A., Alam, M., Dey, V., Chattopadhyay, A., Mukhopadhyay, D.: Adversarial attacks and defences: a survey. CoRR, abs/1810.00069 (2018)

Liao, X., Ding, L., Wang, Y.: Secure machine learning, a brief overview. In: 2011 Fifth International Conference on Secure Software Integration and Reliability Improvement - Companion, pp. 26–29, June 2011

Shi, Y., Sagduyu, Y., Grushin, A.: How to steal a machine learning classifier with deep learning. In: 2017 IEEE International Symposium on Technologies for Homeland Security (HST), pp. 1–5, April 2017

Cachin, C., Camenisch, J.L. (eds.): EUROCRYPT 2004. LNCS, vol. 3027. Springer, Heidelberg (2004). https://doi.org/10.1007/b97182CrossRefMATH

da Silva, I.N., Hernane Spatti, D., Andrade Flauzino, R., Liboni, L.H.B., dos Reis Alves, S.F.: Artificial Neural Networks A Practical Course. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-43162-8CrossRef

Shi, Y., Sagduyu, Y.E., Davaslioglu, K., Li, J.H.: Generative adversarial networks for black-box API attacks with limited training data. CoRR, abs/1901.09113 (2019)

Quiring, E., Arp, D., Rieck, K.: Forgotten siblings: unifying attacks on machine learning and digital watermarking. In: 2018 IEEE European Symposium on Security and Privacy (EuroS P), pp. 488–502, April 2018

10.

NSL-KDD dataset

11.

Aggarwal, C.C.: Neural Networks and Deep Learning A Textbook (2018)CrossRef

12.

Abadi, M., et al.: TensorFlow: large-scale machine learning on heterogeneous systems (2015). Software tensorflow.org

13.

Chollet, F., et al.: Keras (2015). https://github.com/fchollet/keras

Title: The Feasibility of Deep Learning Use for Adversarial Model Extraction in the Cybersecurity Domain
Authors: Michał Choraś
Marek Pawlicki
Rafał Kozik
Publisher: Springer International Publishing
Book: Intelligent Data Engineering and Automated Learning – IDEAL 2019
Print ISBN: 978-3-030-33616-5

Electronic ISBN: 978-3-030-33617-2

Copyright Year: 2019
DOI: https://doi.org/10.1007/978-3-030-33617-2_36

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner