Keyed randomization with adversarial failure curves and moving target defense

Francesco  Bergadano; Sandeep Gupta; Bruno Crispo

doi:10.1109/ICSC65596.2025.11140525

Keyed randomization with adversarial failure curves and moving target defense

Francesco Bergadano
, Sandeep Gupta
, Bruno Crispo

Momentum 1.0

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

Establishing the robustness of classifiers against adversarial attacks is crucial in many applications of Machine Learning to Cybersecurity. This paper focuses on evasion attacks, where inputs are selected or modified to evade detection by a learned model under gray-box scenarios, with only partial adversarial knowledge of the classifier. We generalize the adversarial failure rate metric into a continuous curve, by trading it off against the false positive rate for threshold classifiers, analogous to the receiver operating characteristic (ROC) curve. Subsequently, we propose two novel keyed randomization methods, and a moving target defense strategy. We evaluate the proposed methods using two publicly available intrusion detection datasets (BETH-2021 and Kyoto-2015), demonstrating consistently superior results relative to other randomization techniques.

Original language	English
Title of host publication	2025 5th Intelligent Cybersecurity Conference (ICSC): Proceedings
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	169-176
Number of pages	8
ISBN (Electronic)	9798350392920
ISBN (Print)	9798350392937
DOIs	https://doi.org/10.1109/ICSC65596.2025.11140525
Publication status	Published - 02 Sept 2025
Event	5th Intelligent Cybersecurity Conference (ICSC), Tampa, US - Tampa, United States Duration: 19 May 2025 → 22 May 2025 https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=11140525

Conference

Conference	5th Intelligent Cybersecurity Conference (ICSC), Tampa, US
Abbreviated title	ICSC
Country/Territory	United States
City	Tampa
Period	19/05/2025 → 22/05/2025
Internet address	https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=11140525

Keywords

Machine learning
cyber attacks
Metrics

Access to Document

10.1109/ICSC65596.2025.11140525Licence: Unspecified

Cite this

@inproceedings{bbe05c33d19244999fe6b1801deb0e49,

title = "Keyed randomization with adversarial failure curves and moving target defense",

abstract = "Establishing the robustness of classifiers against adversarial attacks is crucial in many applications of Machine Learning to Cybersecurity. This paper focuses on evasion attacks, where inputs are selected or modified to evade detection by a learned model under gray-box scenarios, with only partial adversarial knowledge of the classifier. We generalize the adversarial failure rate metric into a continuous curve, by trading it off against the false positive rate for threshold classifiers, analogous to the receiver operating characteristic (ROC) curve. Subsequently, we propose two novel keyed randomization methods, and a moving target defense strategy. We evaluate the proposed methods using two publicly available intrusion detection datasets (BETH-2021 and Kyoto-2015), demonstrating consistently superior results relative to other randomization techniques.",

keywords = "Machine learning, cyber attacks, Metrics",

author = "Francesco Bergadano and Sandeep Gupta and Bruno Crispo",

year = "2025",

month = sep,

day = "2",

doi = "10.1109/ICSC65596.2025.11140525",

language = "English",

isbn = "9798350392937",

pages = "169--176",

booktitle = "2025 5th Intelligent Cybersecurity Conference (ICSC): Proceedings",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

note = "5th Intelligent Cybersecurity Conference (ICSC), Tampa, US, ICSC ; Conference date: 19-05-2025 Through 22-05-2025",

url = "https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=11140525",

}

Bergadano, F, Gupta, S & Crispo, B 2025, Keyed randomization with adversarial failure curves and moving target defense. in 2025 5th Intelligent Cybersecurity Conference (ICSC): Proceedings. Institute of Electrical and Electronics Engineers Inc., pp. 169-176, 5th Intelligent Cybersecurity Conference (ICSC), Tampa, US, Tampa, Florida, United States, 19/05/2025. https://doi.org/10.1109/ICSC65596.2025.11140525

TY - GEN

T1 - Keyed randomization with adversarial failure curves and moving target defense

AU - Bergadano, Francesco

AU - Gupta, Sandeep

AU - Crispo, Bruno

PY - 2025/9/2

Y1 - 2025/9/2

N2 - Establishing the robustness of classifiers against adversarial attacks is crucial in many applications of Machine Learning to Cybersecurity. This paper focuses on evasion attacks, where inputs are selected or modified to evade detection by a learned model under gray-box scenarios, with only partial adversarial knowledge of the classifier. We generalize the adversarial failure rate metric into a continuous curve, by trading it off against the false positive rate for threshold classifiers, analogous to the receiver operating characteristic (ROC) curve. Subsequently, we propose two novel keyed randomization methods, and a moving target defense strategy. We evaluate the proposed methods using two publicly available intrusion detection datasets (BETH-2021 and Kyoto-2015), demonstrating consistently superior results relative to other randomization techniques.

AB - Establishing the robustness of classifiers against adversarial attacks is crucial in many applications of Machine Learning to Cybersecurity. This paper focuses on evasion attacks, where inputs are selected or modified to evade detection by a learned model under gray-box scenarios, with only partial adversarial knowledge of the classifier. We generalize the adversarial failure rate metric into a continuous curve, by trading it off against the false positive rate for threshold classifiers, analogous to the receiver operating characteristic (ROC) curve. Subsequently, we propose two novel keyed randomization methods, and a moving target defense strategy. We evaluate the proposed methods using two publicly available intrusion detection datasets (BETH-2021 and Kyoto-2015), demonstrating consistently superior results relative to other randomization techniques.

KW - Machine learning

KW - cyber attacks

KW - Metrics

U2 - 10.1109/ICSC65596.2025.11140525

DO - 10.1109/ICSC65596.2025.11140525

M3 - Conference contribution

SN - 9798350392937

SP - 169

EP - 176

BT - 2025 5th Intelligent Cybersecurity Conference (ICSC): Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 5th Intelligent Cybersecurity Conference (ICSC), Tampa, US

Y2 - 19 May 2025 through 22 May 2025

ER -

Keyed randomization with adversarial failure curves and moving target defense

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this