keynote

Moving Target Defense against Adversarial Machine Learning

Authors:

Anshuman Chhabra,

Prasant MohapatraAuthors Info & Claims

MTD '21: Proceedings of the 8th ACM Workshop on Moving Target Defense

Pages 29 - 30

https://doi.org/10.1145/3474370.3485662

Published: 15 November 2021 Publication History

Get Access

Abstract

As Machine Learning (ML) models are increasingly employed in a number of applications across a multitude of fields, the threat of adversarial attacks against ML models is also increasing. Adversarial samples crafted via specialized attack algorithms have been shown to significantly decrease the performance of ML models. Furthermore, it has also been found that adversarial samples generated for a particular model can transfer across other models, and decrease accuracy and other performance metrics for a model they were not originally crafted for. In recent research, many different defense approaches have been proposed for making ML models robust, ranging from adversarial input re-training to defensive distillation, among others. While these approaches operate at the model-level, we propose an alternate approach to defending ML models against adversarial attacks, using Moving Target Defense (MTD). We formulate the problem and provide preliminary results to showcase the validity of the proposed approach.

Supplementary Material

MP4 File (MTD21-mtd02.mp4)

This video explains the motivation behind this paper and gives a brief background for the techniques and tools used in the research of this paper. The main part of the video gives a detailed explanation of the main idea of the proposed approach and its implementation. Also, premilitary results will be showed and explained in this video. Finally, the video layouts the future work needed to do.

Download
42.29 MB

References

[1]

N. Carlini, G. Katz, C. Barrett, and D. L. Dill, ?Provably minimally distorted adversarial examples," arXiv preprint arXiv:1709.10207, 2017.

Google Scholar

[2]

N. Papernot, P. McDaniel, and I. Goodfellow, "Transferability in machine learning: from phenomena to black-box attacks using adversarial samples," arXiv preprint arXiv:1605.07277, 2016.

Google Scholar

[3]

N. Papernot, P. McDaniel, X. Wu, S. Jha, and A. Swami, "Distillation as a defense to adversarial perturbations against deep neural networks," in 2016 IEEE symposium on security and privacy (SP). IEEE, 2016, pp. 582--597.

Google Scholar

[4]

A. Roy, A. Chhabra, C. A. Kamhoua, and P. Mohapatra, "A moving target defense against adversarial machine learning," in Proceedings of the 4th ACM/IEEE Symposium on Edge Computing, 2019, pp. 383--388.

Google Scholar

[5]

J. Schulman, F. Wolski, P. Dhariwal, A. Radford, and O. Klimov, "Proximal policy optimization algorithms," arXiv preprint arXiv:1707.06347, 2017.

Google Scholar

[6]

R. S. Sutton and A. G. Barto, Reinforcement learning: An introduction. MIT press, 2018.

Digital Library

Google Scholar

Cited By

View all

Alotaibi ARassam M(2023)Adversarial Machine Learning Attacks against Intrusion Detection Systems: A Survey on Strategies and DefenseFuture Internet10.3390/fi1502006215:2(62)Online publication date: 31-Jan-2023
https://doi.org/10.3390/fi15020062
Sun RZhu YFei JChen X(2023)A Survey on Moving Target Defense: Intelligently Affordable, Optimized and Self-AdaptiveApplied Sciences10.3390/app1309536713:9(5367)Online publication date: 25-Apr-2023
https://doi.org/10.3390/app13095367

Index Terms

Moving Target Defense against Adversarial Machine Learning
1. Computing methodologies
  1. Machine learning
    1. Learning paradigms
      1. Supervised learning
2. Security and privacy
  1. Systems security
    1. Vulnerability management

Recommendations

Moving target defense for embedded deep visual sensing against adversarial examples
SenSys '19: Proceedings of the 17th Conference on Embedded Networked Sensor Systems

Deep learning-based visual sensing has achieved attractive accuracy but is shown vulnerable to adversarial example attacks. Specifically, once the attackers obtain the deep model, they can construct adversarial examples to mislead the model to yield ...
A moving target defense against adversarial machine learning
SEC '19: Proceedings of the 4th ACM/IEEE Symposium on Edge Computing

Adversarial Machine Learning has become the latest threat with the ubiquitous presence of machine learning. In this paper we propose a Moving Target Defense approach to defend against adversarial machine learning, i.e., instead of manipulating the ...
Moving Target Defense Against Injection Attacks
Algorithms and Architectures for Parallel Processing
Abstract
With the development of network technology, web services become more convenient and popular. However, web services are also facing serious security threats, especially SQL injection attack(SQLIA). Due to the diversity of attack techniques and the ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

MTD '21: Proceedings of the 8th ACM Workshop on Moving Target Defense

November 2021

48 pages

ISBN:9781450386586

DOI:10.1145/3474370

Program Chairs:
Trent Jaeger
Penn State University, USA
,
Zhiyun Qian
University of California, Riverside, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 15 November 2021

Check for updates

Author Tags

Qualifiers

Keynote

Conference

CCS '21

Sponsor:

SIGSAC

CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security

November 15, 2021

Virtual Event, Republic of Korea

Acceptance Rates

Overall Acceptance Rate 40 of 92 submissions, 43%

Upcoming Conference

ICSE 2025

2025 IEEE/ACM 46th International Conference on Software Engineering

April 26 - May 3, 2025

Ottawa , ON , Canada

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
239
Total Downloads

Downloads (Last 12 months)55
Downloads (Last 6 weeks)6

Reflects downloads up to 03 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Alotaibi ARassam M(2023)Adversarial Machine Learning Attacks against Intrusion Detection Systems: A Survey on Strategies and DefenseFuture Internet10.3390/fi1502006215:2(62)Online publication date: 31-Jan-2023
https://doi.org/10.3390/fi15020062
Sun RZhu YFei JChen X(2023)A Survey on Moving Target Defense: Intelligently Affordable, Optimized and Self-AdaptiveApplied Sciences10.3390/app1309536713:9(5367)Online publication date: 25-Apr-2023
https://doi.org/10.3390/app13095367

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Moving target defense for embedded deep visual sensing against adversarial examples

A moving target defense against adversarial machine learning

Moving Target Defense Against Injection Attacks