About: Randomized Operating Point Selection in Adversarial Classification

Facets (new session)
Description
Metadata
Settings
- owl:sameAs
- Inference Rule:

About: Randomized Operating Point Selection in Adversarial Classification Goto Sponge NotDistinct Permalink

An Entity of Type : http://linked.opendata.cz/ontology/domain/vavai/Vysledek, within Data Space : linked.opendata.cz associated with source document(s)

Attributes	Values
rdf:type	skos:Concept http://linked.opendata.cz/ontology/domain/vavai/Vysledek
rdfs:seeAlso	http://link.springer.com/chapter/10.1007/978-3-662-44851-9_16
Description	Security systems for email spam filtering, network intrusion detection, steganalysis, and watermarking, frequently use classifiers to separate malicious behavior from legitimate. Typically, they use a fixed operating point minimizing the expected cost / error. This allows a rational attacker to deliver invisible attacks just below the detection threshold. We model this situation as a non-zero sum normal form game capturing attacker’s expected payoffs for detected and undetected attacks, and detector’s costs for false positives and false negatives computed based on the Receiver Operating Characteristic (ROC) curve of the classifier. The analysis of Nash and Stackelberg equilibria reveals that using a randomized strategy over multiple operating points forces the rational attacker to design less efficient attacks and substantially lowers the expected cost of the detector. We present the equilibrium strategies for sample ROC curves from network intrusion detection system and evaluate the corresponding benefits. Security systems for email spam filtering, network intrusion detection, steganalysis, and watermarking, frequently use classifiers to separate malicious behavior from legitimate. Typically, they use a fixed operating point minimizing the expected cost / error. This allows a rational attacker to deliver invisible attacks just below the detection threshold. We model this situation as a non-zero sum normal form game capturing attacker’s expected payoffs for detected and undetected attacks, and detector’s costs for false positives and false negatives computed based on the Receiver Operating Characteristic (ROC) curve of the classifier. The analysis of Nash and Stackelberg equilibria reveals that using a randomized strategy over multiple operating points forces the rational attacker to design less efficient attacks and substantially lowers the expected cost of the detector. We present the equilibrium strategies for sample ROC curves from network intrusion detection system and evaluate the corresponding benefits. (en)
Title	Randomized Operating Point Selection in Adversarial Classification Randomized Operating Point Selection in Adversarial Classification (en)
skos:prefLabel	Randomized Operating Point Selection in Adversarial Classification Randomized Operating Point Selection in Adversarial Classification (en)
skos:notation	RIV/68407700:21230/14:00223897!RIV15-MV0-21230___
http://linked.open...avai/riv/aktivita	P
http://linked.open...avai/riv/aktivity	P(GPP103/12/P514), P(VG20122014079)
http://linked.open...vai/riv/dodaniDat	2015
http://linked.open...aciTvurceVysledku	Pevný, Tomáš Kessl, Robert Lisý, Viliam
http://linked.open.../riv/druhVysledku	D - Článek ve sborníku
http://linked.open...iv/duvernostUdaju	S - Úplné a pravdivé údaje nepodléhající ochraně podle zvláštních právních předpisů
http://linked.open...titaPredkladatele	České vysoké učení technické v Praze / Fakulta elektrotechnická
http://linked.open...dnocenehoVysledku	41320
http://linked.open...ai/riv/idVysledku	RIV/68407700:21230/14:00223897
http://linked.open...riv/jazykVysledku	eng - angličtina
http://linked.open.../riv/klicovaSlova	Game theory; operating point selection; receiver operating characteristic; adversarial machine learning; misclassification cost (en)
http://linked.open.../riv/klicoveSlovo	Game theory adversarial machine learning misclassification cost operating point selection receiver operating characteristic
http://linked.open...ontrolniKodProRIV	[D5E1FB5AFA40]
http://linked.open...v/mistoKonaniAkce	Nancy
http://linked.open...i/riv/mistoVydani	Heidelberg
http://linked.open...i/riv/nazevZdroje	Machine Learning and Knowledge Discovery in Databases - ECML PKDD 2013, part II
http://linked.open...in/vavai/riv/obor	IN
http://linked.open...ichTvurcuVysledku	3 (xsd:int)
http://linked.open...cetTvurcuVysledku	3 (xsd:int)
http://linked.open...vavai/riv/projekt	Real-time detection of anomalous events in a non-stationary environment Behavioral Detection of Advanced Persistent Threats in Computer Networks
http://linked.open...UplatneniVysledku	2014
http://linked.open...iv/tvurceVysledku	Lisý, Viliam Pevný, Tomáš Kessl, Robert
http://linked.open...vavai/riv/typAkce	WRD - Světová
http://linked.open.../riv/zahajeniAkce	2014-09-15 (xsd:date)
issn	0302-9743
number of pages	16 (xsd:int)
http://bibframe.org/vocab/doi	10.1007/978-3-662-44851-9_16
http://purl.org/ne...btex#hasPublisher	Springer-Verlag
https://schema.org/isbn	978-3-662-44850-2
http://localhost/t...ganizacniJednotka	21230

Faceted Search & Find service v1.16.118 as of Jun 21 2024

Alternative Linked Data Documents: ODE Content Formats:

RDF

ODATA

Microdata

About

OpenLink Virtuoso version 07.20.3240 as of Jun 21 2024, on Linux (x86_64-pc-linux-gnu), Single-Server Edition (126 GB total memory, 116 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2024 OpenLink Software