Poster

Picek, Stjepan; Jap, D.; Bhasin, Shivam

Poster

When adversary becomes the guardian - Towards side-channel security with adversarial attacks

Conference paper (2019)

Authors

Stjepan Picek

D. Jap Nanyang Technological University

Shivam Bhasin Nanyang Technological University

Machine Learning Adversarial Examples Side-channel Analysis Profiled Attacks

To reference this document use:

http://resolver.tudelft.nl/uuid:0d3371cc-bbad-4fbf-bd03-6ffec2efe2d5

More Info

expand_more

Published Date

2019

Language

English

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Abstract

Machine learning algorithms fall prey to adversarial examples. As profiling side-channel attacks are seeing rapid adoption of machine learning-based approaches that can even defeat commonly used side-channel countermeasures, we investigate the potential of adversarial example as a defense mechanism. We show that adversarial examples have the potential to serve as a countermeasure against machine learning-based side-channel attacks. Further, we exploit the transferability property to show that a common adversarial example can act as a countermeasure against a range of machine learning-based side-channel classifiers.

Files

P2673_picek.pdf

(pdf | 0.905 Mb)

License info not available

Download not available