On the Statistical Detection of Adversarial Instances over Encrypted Data

None, None; None, None; None, None; None, None; None, None

On the Statistical Detection of Adversarial Instances over Encrypted Data

Conference Paper (2019)

Author(s)

Mina Sheikhalishahi (Consiglio Nazionale delle Ricerche (CNR))

Majid Nateghizad (TU Delft - Cyber Security)

Fabio Martinelli (Consiglio Nazionale delle Ricerche (CNR))

Zekeriya Erkin (TU Delft - Cyber Security)

Marco Loog (TU Delft - Pattern Recognition and Bioinformatics)

Research Group

Cyber Security

DOI related publication

https://doi.org/10.1007/978-3-030-31511-5_5

Privacy Homomorphic encryption Adversarial machine learning

To reference this document use:

https://resolver.tudelft.nl/uuid:696ab9aa-d01e-4b27-a184-66730a42638b

More Info

expand_more

Publication Year

2019

Language

English

Research Group

Cyber Security

Volume number

11738

Pages (from-to)

71-88

Publisher

Springer

ISBN (print)

9783030315108

Event

15th International Workshop on Security and Trust Management, STM 2019 held in conjunction with the 24th European Symposium on Research in Computer Security, ESORICS 2019 (2019-09-26 - 2019-09-27), Luxembourg, Luxembourg

Downloads counter

173

Abstract

Adversarial instances are malicious inputs designed to fool machine learning models. In particular, motivated and sophisticated attackers intentionally design adversarial instances to evade classifiers which have been trained to detect security violation, such as malware detection. While the existing approaches provide effective solutions in detecting and defending adversarial samples, they fail to detect them when they are encrypted. In this study, a novel framework is proposed which employs statistical test to detect adversarial instances, when data under analysis are encrypted. An experimental evaluation of our approach shows its practical feasibility in terms of computation cost.

No files available

Metadata only record. There are no files for this record.