On the Statistical Detection of Adversarial Instances over Encrypted Data

None, None; None, None; None, None; None, None; None, None

On the Statistical Detection of Adversarial Instances over Encrypted Data

Conference Paper (2019)

Author(s)

Mina Sheikhalishahi (Consiglio Nazionale delle Ricerche (CNR))

M. Nateghizad (TU Delft - Cyber Security)

Fabio Martinelli (Consiglio Nazionale delle Ricerche (CNR))

Z. Erkin (TU Delft - Cyber Security)

M. Loog (TU Delft - Pattern Recognition and Bioinformatics)

Research Group

Cyber Security

DOI related publication

https://doi.org/10.1007/978-3-030-31511-5_5

Privacy Homomorphic encryption Adversarial machine learning

To reference this document use:

https://resolver.tudelft.nl/uuid:696ab9aa-d01e-4b27-a184-66730a42638b

More Info

expand_more

Publication Year

2019

Language

English

Research Group

Cyber Security

Volume number

11738

Pages (from-to)

71-88

ISBN (print)

9783030315108

Abstract

Adversarial instances are malicious inputs designed to fool machine learning models. In particular, motivated and sophisticated attackers intentionally design adversarial instances to evade classifiers which have been trained to detect security violation, such as malware detection. While the existing approaches provide effective solutions in detecting and defending adversarial samples, they fail to detect them when they are encrypted. In this study, a novel framework is proposed which employs statistical test to detect adversarial instances, when data under analysis are encrypted. An experimental evaluation of our approach shows its practical feasibility in terms of computation cost.

No files available

Metadata only record. There are no files for this record.