%0 Conference Paper %1 Kayacik:2007:CISDA %A Kayacik, H. G. %A Zincir-Heywood, A. N. %A Heywood, M. I. %B IEEE Symposium on computational Intelligence in Security and Defense Applications %C Honolulu %D 2007 %I IEEE Press %K algorithms, attack generation, genetic mimicry programming, testing vulnerability %P 153--160 %T Automatically Evading IDS using GP Authored Attacks %X A mimicry attack is a type of attack where the basic steps of a minimalist core attack are used to design multiple attacks achieving the same objective from the same application. Research in mimicry attacks is valuable in determining and eliminating weaknesses of detectors. In this work, we provide a genetic programming based automated process for designing all components of a mimicry attack relative to the Stide detector under a vulnerable Traceroute application. Results indicate that the automatic process is able to generate mimicry attacks that reduce the alarm rate from 65percent of the original attack, to 2.7percent, effectively making the attack indistinguishable from normal behaviors.

@inproceedings{Kayacik:2007:CISDA, abstract = {A mimicry attack is a type of attack where the basic steps of a minimalist core attack are used to design multiple attacks achieving the same objective from the same application. Research in mimicry attacks is valuable in determining and eliminating weaknesses of detectors. In this work, we provide a genetic programming based automated process for designing all components of a mimicry attack relative to the Stide detector under a vulnerable Traceroute application. Results indicate that the automatic process is able to generate mimicry attacks that reduce the alarm rate from 65percent of the original attack, to 2.7percent, effectively making the attack indistinguishable from normal behaviors.}, added-at = {2008-06-19T17:35:00.000+0200}, address = {Honolulu}, author = {Kayacik, H. G. and Zincir-Heywood, A. N. and Heywood, M. I.}, biburl = {https://www.bibsonomy.org/bibtex/279303be30870cc6f96d2982b8c1047bf/brazovayeye}, booktitle = {IEEE Symposium on computational Intelligence in Security and Defense Applications}, interhash = {07559aaa9476ab0ba1ee3f918054ee30}, intrahash = {79303be30870cc6f96d2982b8c1047bf}, keywords = {algorithms, attack generation, genetic mimicry programming, testing vulnerability}, month = {April 1-5}, notes = {http://www.cidefense.org/}, pages = {153--160}, publisher = {IEEE Press}, timestamp = {2008-06-19T17:42:59.000+0200}, title = {Automatically Evading {IDS} using {GP} Authored Attacks}, year = 2007 }