{"id":"https://openalex.org/W4321484315","doi":"https://doi.org/10.1109/tdsc.2023.3247585","title":"Automatic Evasion of Machine Learning-Based Network Intrusion Detection Systems","display_name":"Automatic Evasion of Machine Learning-Based Network Intrusion Detection Systems","publication_year":2023,"publication_date":"2023-02-22","ids":{"openalex":"https://openalex.org/W4321484315","doi":"https://doi.org/10.1109/tdsc.2023.3247585"},"language":"en","primary_location":{"id":"doi:10.1109/tdsc.2023.3247585","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2023.3247585","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5048417676","display_name":"Haonan Yan","orcid":"https://orcid.org/0000-0002-1784-6091"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]},{"id":"https://openalex.org/I79817857","display_name":"University of Guelph","ror":"https://ror.org/01r7awg59","country_code":"CA","type":"education","lineage":["https://openalex.org/I79817857"]}],"countries":["CA","CN"],"is_corresponding":true,"raw_author_name":"Haonan Yan","raw_affiliation_strings":["State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","School of Computer Science, University of Guelph, Guelph, ON, Canada"],"raw_orcid":"https://orcid.org/0000-0002-1784-6091","affiliations":[{"raw_affiliation_string":"State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","institution_ids":["https://openalex.org/I149594827"]},{"raw_affiliation_string":"School of Computer Science, University of Guelph, Guelph, ON, Canada","institution_ids":["https://openalex.org/I79817857"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100373860","display_name":"Xiaoguang Li","orcid":"https://orcid.org/0000-0002-1839-1607"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiaoguang Li","raw_affiliation_strings":["State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China"],"raw_orcid":"https://orcid.org/0000-0002-1839-1607","affiliations":[{"raw_affiliation_string":"State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100407198","display_name":"Wenjing Zhang","orcid":"https://orcid.org/0000-0002-3066-7186"},"institutions":[{"id":"https://openalex.org/I79817857","display_name":"University of Guelph","ror":"https://ror.org/01r7awg59","country_code":"CA","type":"education","lineage":["https://openalex.org/I79817857"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Wenjing Zhang","raw_affiliation_strings":["School of Computer Science, University of Guelph, Guelph, ON, Canada"],"raw_orcid":"https://orcid.org/0000-0002-3066-7186","affiliations":[{"raw_affiliation_string":"School of Computer Science, University of Guelph, Guelph, ON, Canada","institution_ids":["https://openalex.org/I79817857"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101552861","display_name":"Rui Wang","orcid":"https://orcid.org/0000-0001-8707-8887"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Rui Wang","raw_affiliation_strings":["State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024453724","display_name":"Hui Li","orcid":"https://orcid.org/0000-0001-8310-7169"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hui Li","raw_affiliation_strings":["State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China"],"raw_orcid":"https://orcid.org/0000-0001-8310-7169","affiliations":[{"raw_affiliation_string":"State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5088300943","display_name":"Xingwen Zhao","orcid":"https://orcid.org/0000-0001-8037-6769"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xingwen Zhao","raw_affiliation_strings":["State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory of Integrated Services Networks, School of Cyber Engineering, Xidian University, Xi&#x2019;an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100325259","display_name":"Fenghua Li","orcid":"https://orcid.org/0000-0003-0638-5610"},"institutions":[{"id":"https://openalex.org/I4210156404","display_name":"Institute of Information Engineering","ror":"https://ror.org/04r53se39","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210156404"]},{"id":"https://openalex.org/I4210165038","display_name":"University of Chinese Academy of Sciences","ror":"https://ror.org/05qbk4x57","country_code":"CN","type":"education","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210165038"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Fenghua Li","raw_affiliation_strings":["State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academic of Sciences, Beijing, China","School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academic of Sciences, Beijing, China","institution_ids":["https://openalex.org/I4210156404"]},{"raw_affiliation_string":"School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China","institution_ids":["https://openalex.org/I4210165038"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5083787204","display_name":"Xiaodong Lin","orcid":"https://orcid.org/0000-0001-8916-6645"},"institutions":[{"id":"https://openalex.org/I79817857","display_name":"University of Guelph","ror":"https://ror.org/01r7awg59","country_code":"CA","type":"education","lineage":["https://openalex.org/I79817857"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Xiaodong Lin","raw_affiliation_strings":["School of Computer Science, University of Guelph, Guelph, ON, Canada"],"raw_orcid":"https://orcid.org/0000-0001-8916-6645","affiliations":[{"raw_affiliation_string":"School of Computer Science, University of Guelph, Guelph, ON, Canada","institution_ids":["https://openalex.org/I79817857"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5048417676"],"corresponding_institution_ids":["https://openalex.org/I149594827","https://openalex.org/I79817857"],"apc_list":null,"apc_paid":null,"fwci":8.1041,"has_fulltext":false,"cited_by_count":42,"citation_normalized_percentile":{"value":0.97861611,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":100},"biblio":{"volume":"21","issue":"1","first_page":"153","last_page":"167"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7965293526649475},{"id":"https://openalex.org/keywords/evasion","display_name":"Evasion (ethics)","score":0.6832921504974365},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.6647639274597168},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6120725870132446},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.5975108742713928},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.5817022919654846},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5407673120498657},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.4697205126285553},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.46851587295532227},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.4240274131298065},{"id":"https://openalex.org/keywords/attack-model","display_name":"Attack model","score":0.4143410325050354}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7965293526649475},{"id":"https://openalex.org/C2781251061","wikidata":"https://www.wikidata.org/wiki/Q5416089","display_name":"Evasion (ethics)","level":3,"score":0.6832921504974365},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.6647639274597168},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6120725870132446},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.5975108742713928},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.5817022919654846},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5407673120498657},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4697205126285553},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.46851587295532227},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.4240274131298065},{"id":"https://openalex.org/C65856478","wikidata":"https://www.wikidata.org/wiki/Q3991682","display_name":"Attack model","level":2,"score":0.4143410325050354},{"id":"https://openalex.org/C8891405","wikidata":"https://www.wikidata.org/wiki/Q1059","display_name":"Immune system","level":2,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C203014093","wikidata":"https://www.wikidata.org/wiki/Q101929","display_name":"Immunology","level":1,"score":0.0},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tdsc.2023.3247585","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2023.3247585","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6299999952316284,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G673329116","display_name":null,"funder_award_id":"B16037","funder_id":"https://openalex.org/F4320327912","funder_display_name":"Higher Education Discipline Innovation Project"}],"funders":[{"id":"https://openalex.org/F4320310921","display_name":"University of Guelph","ror":"https://ror.org/01r7awg59"},{"id":"https://openalex.org/F4320327912","display_name":"Higher Education Discipline Innovation Project","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":58,"referenced_works":["https://openalex.org/W1673923490","https://openalex.org/W1985902740","https://openalex.org/W2011628134","https://openalex.org/W2026258420","https://openalex.org/W2027664152","https://openalex.org/W2038296020","https://openalex.org/W2065955975","https://openalex.org/W2095577883","https://openalex.org/W2119885577","https://openalex.org/W2535873859","https://openalex.org/W2570685808","https://openalex.org/W2574797807","https://openalex.org/W2603766943","https://openalex.org/W2749572357","https://openalex.org/W2774644650","https://openalex.org/W2789828921","https://openalex.org/W2799905159","https://openalex.org/W2802196017","https://openalex.org/W2807786182","https://openalex.org/W2853623529","https://openalex.org/W2900853407","https://openalex.org/W2905526464","https://openalex.org/W2945790622","https://openalex.org/W2962847335","https://openalex.org/W2963070423","https://openalex.org/W2963197901","https://openalex.org/W2963465081","https://openalex.org/W2963857521","https://openalex.org/W2963859254","https://openalex.org/W2963882994","https://openalex.org/W2964205597","https://openalex.org/W2969542116","https://openalex.org/W2991408690","https://openalex.org/W2995671208","https://openalex.org/W2998216295","https://openalex.org/W3003901932","https://openalex.org/W3006008420","https://openalex.org/W3009195050","https://openalex.org/W3009530296","https://openalex.org/W3021340315","https://openalex.org/W3091857398","https://openalex.org/W3101155090","https://openalex.org/W3104158743","https://openalex.org/W3111088413","https://openalex.org/W3141043040","https://openalex.org/W4287615768","https://openalex.org/W4293846201","https://openalex.org/W6631843488","https://openalex.org/W6636391385","https://openalex.org/W6637162671","https://openalex.org/W6676885637","https://openalex.org/W6731927902","https://openalex.org/W6739868092","https://openalex.org/W6746608116","https://openalex.org/W6750404860","https://openalex.org/W6758380610","https://openalex.org/W6786190841","https://openalex.org/W7066667914"],"related_works":["https://openalex.org/W4320018150","https://openalex.org/W4239582170","https://openalex.org/W2918664383","https://openalex.org/W106056076","https://openalex.org/W4320855730","https://openalex.org/W2135200719","https://openalex.org/W2808001300","https://openalex.org/W1548771250","https://openalex.org/W4307079546","https://openalex.org/W4283317927"],"abstract_inverted_index":{"Network":[0],"intrusion":[1],"detection":[2],"systems":[3],"(IDS)":[4],"are":[5,17],"often":[6],"considered":[7,108],"effective":[8,196],"to":[9,100,137],"thwart":[10],"cyber":[11],"attacks.":[12],"Currently,":[13],"state-of-the-art":[14],"(SOTA)":[15],"IDSs":[16,165],"mainly":[18],"based":[19],"on":[20,48],"machine":[21],"learning":[22,26],"(ML)":[23],"including":[24],"deep":[25],"(DL)":[27],"models,":[28],"which":[29,72,190],"suffer":[30],"from":[31],"their":[32],"own":[33],"security":[34],"issues,":[35],"especially":[36],"evasion":[37,97],"attacks":[38],"by":[39],"using":[40],"adversarial":[41],"examples.":[42],"However,":[43],"previous":[44],"studies":[45],"mostly":[46],"focus":[47],"extracted":[49],"features":[50],"rather":[51],"than":[52],"the":[53,60,63,66,102,111,114,120,131,139,157,184,193],"traffic":[54,115],"sample":[55,116],"itself,":[56],"and/or":[57],"assume":[58],"that":[59,110,156],"adversary":[61,112],"knows":[62],"information":[64],"of":[65,176],"target":[67],"model":[68,132],"more":[69,88],"or":[70,123],"less,":[71],"severely":[73],"restricts":[74],"attack":[75,98,136,143],"feasibility":[76],"in":[77,86],"practice.":[78],"In":[79,105],"this":[80,84,106],"paper,":[81],"we":[82,128],"re-investigate":[83],"problem":[85],"a":[87,95,148],"realistic":[89],"label-only":[90],"black-box":[91],"scenario":[92],"and":[93,117,134,147,166],"propose":[94],"practical":[96],"strategy":[99,144,159],"solve":[101],"above":[103],"limitations.":[104],"newly":[107],"case":[109],"morphs":[113],"only":[118],"obtains":[119],"results":[121,154],"accepted":[122],"rejected":[124],"without":[125],"other":[126],"knowledge,":[127],"successfully":[129],"leverage":[130],"extraction":[133],"transfer":[135],"evade":[138],"detection.":[140],"The":[141],"entire":[142],"is":[145,151],"automated":[146],"comprehensive":[149],"evaluation":[150],"performed.":[152],"Final":[153],"show":[155],"proposed":[158],"effectively":[160],"evades":[161],"seven":[162],"typical":[163],"ML-based":[164],"one":[167],"SOTA":[168],"DL-based":[169],"IDS":[170],"with":[171],"an":[172],"average":[173],"success":[174],"rate":[175],"over":[177],"<inline-formula><tex-math":[178],"notation=\"LaTeX\">$75\\%$</tex-math></inline-formula>":[179],".":[180],"We":[181],"also":[182],"discuss":[183],"corresponding":[185],"countermeasures":[186],"against":[187,198],"our":[188,199],"attack,":[189],"finally":[191],"highlight":[192],"need":[194],"for":[195],"defenses":[197],"attack.":[200]},"counts_by_year":[{"year":2026,"cited_by_count":7},{"year":2025,"cited_by_count":22},{"year":2024,"cited_by_count":8},{"year":2023,"cited_by_count":5}],"updated_date":"2026-05-19T08:33:51.333923","created_date":"2025-10-10T00:00:00"}