9004 Problems of information security. Computer systems Проблемы информационной безопасности. Компьютерные системы 2071-8217 14 10.48612/jisp/xkgk-zgmm-d7nh Using machine learning algorithms and Honeypot system to detect adversarial attacks on intrusion detection systems Использование алгоритмов машинного обучения и Honeypot-систем для обнаружения состязательных атак на системы обнаружения вторжений 0000-0002-3830-1840 Yugai Pavel yugaj_pe@spbstu.ru Moskvin Dmitry moskvin_da@spbstu.ru Peter the Great St. Petersburg Polytechnic University 25 12 2023 4 145 155

This paper presents adversarial attacks on machine learning algorithms in intrusion detection systems. Some examples of existing intrusion detection systems are examined. Existing approaches to detecting these attacks are considered. Requirements have been formed to improve the stability of machine learning algorithms. Two approaches are proposed for detecting adversarial attacks on machine learning algorithms, the first of which is based on a multi-class classifier and a honeypot system, and the second approach uses a combination of a multi-class and a binary classifier. The proposed approaches can be used in further research aimed at detecting adversarial attacks on machine learning algorithms.

 intrusion detection system machine learning adversarial attack honeypot system evasion attack poisoning attack model extraction attack binary classifier multi-class classifier