How to make a succesful mimicry attack when normal clusters are very small?

Asked Feb 23 '18 at 15:21

Active Feb 23 '18 at 15:44

Viewed 68 times

Anomaly detection IDS, sometimes, are designed to prevent mimicry attacks.

After the algorithm has done the clustering, there might be few and small clusters. The attacker will have problems with generating malicious samples that can be clustered as normal because it is more difficult for her/him to find the space where the "normal" clusters are.

What can be done to make a mimicry attack successful? How to put the malicious sample inside the normal clusters?

edited Feb 23 '18 at 15:44

alecxe

1,515
5
19
34

asked Feb 23 '18 at 15:21

Aizzaac

Is this a homework question? – schroeder Apr 22 '19 at 15:28
No. I have done data science in the past. But I am starting in cybersecurity. – Aizzaac Apr 22 '19 at 15:33
Ok, it's just written in a very different style than the rest of your posts. I'm seeing a lot of academic articles on the topic. – schroeder Apr 22 '19 at 15:36

How to make a succesful mimicry attack when normal clusters are very small?

0 Answers0