In [15]:
# Imports

import numpy as np
import pandas as pd
from shared.utils import load_data
from datasets import preprocess_dataset, datasets_types

from sklearn.cluster import KMeans
from scipy.stats import beta as beta_dist
from sklearn.ensemble import RandomForestClassifier
from sklearn.naive_bayes import GaussianNB
from sklearn.svm import SVC
from sklearn.linear_model import LogisticRegression
from sklearn.metrics import accuracy_score, precision_score, recall_score, f1_score, roc_auc_score
from sklearn.metrics import classification_report
from art.attacks.evasion import HopSkipJump

from art.estimators.classification.scikitlearn import ScikitlearnClassifier
from art.utils import to_categorical
from art.attacks.evasion import ZooAttack
from art.estimators.classification import SklearnClassifier
seed = 42

In [4]:
df = load_data(
            [
                "./shared/data/CIC_2017/Thursday-WorkingHours-Afternoon-Infilteration.pcap_ISCX.csv",
                "./shared/data/CIC_2017/Thursday-WorkingHours-Morning-WebAttacks.pcap_ISCX.csv",
                "./shared/data/CIC_2017/Tuesday-WorkingHours.pcap_ISCX.csv"
            ]
        )
print("Dataset cargado")
df_preprocessed = preprocess_dataset(
    df, save=True, dataset_type="CIC_2017", seed=seed, load=False)
print("Dataset Preprocesado")

Dataset cargado
Loading new data
labels: {'FTP-Patator', '-', 'Web Attack � XSS', 'Web Attack � Brute Force', 'SSH-Patator'}
Dataset Preprocesado


In [5]:
x_train = df_preprocessed.x_train
y_train = df_preprocessed.y_train
x_test = df_preprocessed.x_test
y_test = df_preprocessed.y_test

y_train = y_train.apply(lambda x: int(x))
y_test = y_test.apply(lambda x: int(x))

print(y_train.unique())
print(y_test.unique())

print(x_train.shape)
print(y_train.shape)
print(x_test.shape)
print(y_test.shape)

[0 1]
[0 1]
(633413, 63)
(633413,)
(271464, 63)
(271464,)


In [6]:
# Train a RF Classifier
from sklearn.ensemble import RandomForestClassifier
rf = RandomForestClassifier(n_estimators=100, random_state=42)
rf.fit(x_train, y_train)

In [7]:
# Train a MLP Classifier
from sklearn.neural_network import MLPClassifier
mlp = MLPClassifier(hidden_layer_sizes=(32),max_iter=200,verbose=False,batch_size=200,early_stopping=True,activation='tanh',solver='adam')
mlp.fit(x_train, y_train)

In [8]:
# Train a NB Classifier
from sklearn.naive_bayes import GaussianNB
nb = GaussianNB()
nb.fit(x_train, y_train)

In [9]:
# Train a DT Classifier
from sklearn.tree import DecisionTreeClassifier
dt = DecisionTreeClassifier()
dt.fit(x_train, y_train)

In [10]:
# Train a LR Classifier
from sklearn.linear_model import LogisticRegression
lr = LogisticRegression()
lr.fit(x_train, y_train)

STOP: TOTAL NO. of ITERATIONS REACHED LIMIT.

Increase the number of iterations (max_iter) or scale the data as shown in:
    https://scikit-learn.org/stable/modules/preprocessing.html
Please also refer to the documentation for alternative solver options:
    https://scikit-learn.org/stable/modules/linear_model.html#logistic-regression
  n_iter_i = _check_optimize_result(


In [11]:
FUNCTIONAL_FEATURES = [
 ' min_seg_size_forward',' Bwd Header Length',' Destination Port'
 'Init_Win_bytes_forward',' Init_Win_bytes_backward',' Bwd Packets/s'
 'Total Length of Fwd Packets',' Subflow Fwd Bytes',' Max Packet Length'
 'Bwd Packet Length Max',' Avg Bwd Segment Size',' Bwd Packet Length Mean'
 ' Fwd Packet Length Max',' Average Packet Size',' Packet Length Std'
 ' Packet Length Mean',' Bwd Packet Length Std',' Bwd Packet Length Min'
 ' Fwd Packet Length Std',' Fwd Packet Length Min',' Min Packet Length'
 ' Fwd Packet Length Mean',' Avg Fwd Segment Size',' act_data_pkt_fwd'
 ' Total Fwd Packets','Subflow Fwd Packets',' Total Backward Packets']
print(len(FUNCTIONAL_FEATURES))
FUNCTIONAL_FEATURES_IDEXES = [df.columns.get_loc(c) for c in df.columns if c not in FUNCTIONAL_FEATURES][:-1]
print(FUNCTIONAL_FEATURES_IDEXES, len(FUNCTIONAL_FEATURES_IDEXES))
NON_FUNCTIONAL_FEATURES_IDEXES = [df.columns.get_loc(c) for c in df.columns if c in FUNCTIONAL_FEATURES]
print(NON_FUNCTIONAL_FEATURES_IDEXES, len(NON_FUNCTIONAL_FEATURES_IDEXES))
print(len(df.columns))

19
[0, 1, 2, 4, 5, 6, 8, 9, 10, 11, 12, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 46, 49, 50, 51, 53, 55, 56, 57, 58, 59, 60, 61] 51
[3, 7, 13, 31, 43, 44, 45, 47, 48, 52, 54] 11
63


In [13]:
attacks_data = x_test[y_test == 1]
normal_data = x_test[y_test == 0]
print(attacks_data.shape, normal_data.shape)

(4815, 63) (266649, 63)


In [38]:
# Create ART classifier
class Classifier(ScikitlearnClassifier):
    
    def __init__(self, model, clip_values=None, preprocessing=(0, 1), attacks=[]):
        super(Classifier, self).__init__(model=model, clip_values=clip_values, preprocessing=preprocessing)
        self._attacks = attacks

    def predict(self, x, **kwargs):
        # Set attacks features to X
        for i in FUNCTIONAL_FEATURES_IDEXES:
            for j in range(len(x)):
                x[j][i] = self._attacks[j][i]
        predictions = self._model.predict(x)
        return to_categorical(self._model.predict(x)[0], nb_classes=self._get_nb_classes())

In [24]:


models = [rf, mlp, nb, dt, lr]
for model in models:
    # Create a SklearnClassifier wrapper around the trained classifier
    # classifier = Classifier(model=rf, clip_values=(0, 1), attacks=attacks_data)
    classifier = SklearnClassifier(model=model, clip_values=(0, 1))
    # Create the ZOO attack
    attack = ZooAttack(classifier=classifier, targeted=True, nb_parallel=60)
    # Generate adversarial data on the testing set
    x_test_adv = attack.generate(attacks_data[:500], np.zeros((attacks_data[:500].shape[0], 1)))

    non_adv_x_test = np.concatenate((attacks_data[:500], normal_data[:500]))
    non_adv_y_test = np.concatenate((np.ones((attacks_data[:500].shape[0], 1)), np.zeros((normal_data[:500].shape[0], 1))))
    adv_x_test = np.concatenate((x_test_adv, normal_data[:500]))
    adv_y_test = np.concatenate((np.ones((x_test_adv.shape[0], 1)), np.zeros((normal_data[:500].shape[0], 1))))
    # Evaluate the Model with the adversarial data and the non adversarial data
    print("====================> Model: ", model)
    print("---------- Non adversarial data")
    print(classification_report(non_adv_y_test, model.predict(non_adv_x_test)))
    print("Accuracy: ", accuracy_score(non_adv_y_test, model.predict(non_adv_x_test)))
    # Calculate the detection rate (attacks TP / attacks TP + attacks FN)
    print("Detection Rate: ", recall_score(non_adv_y_test, model.predict(non_adv_x_test)))
    print("F1 Score: ", f1_score(non_adv_y_test, model.predict(non_adv_x_test)))
    print("ROC AUC Score: ", roc_auc_score(non_adv_y_test, model.predict(non_adv_x_test)))
    print("---------- Adversarial data")
    print(classification_report(adv_y_test, model.predict(adv_x_test)))
    print("Accuracy: ", accuracy_score(adv_y_test, model.predict(adv_x_test)))
    print("Detection Rate: ", recall_score(adv_y_test, model.predict(adv_x_test)))
    print("F1 Score: ", f1_score(adv_y_test, model.predict(adv_x_test)))
    print("ROC AUC Score: ", roc_auc_score(adv_y_test, model.predict(adv_x_test)))

ZOO:   0%|          | 0/500 [00:00<?, ?it/s]

---------- Non adversarial data
              precision    recall  f1-score   support

         0.0       0.99      1.00      0.99       500
         1.0       1.00      0.99      0.99       500

    accuracy                           0.99      1000
   macro avg       0.99      0.99      0.99      1000
weighted avg       0.99      0.99      0.99      1000

Accuracy:  0.994
Detection Rate:  0.988
F1 Score:  0.993963782696177
ROC AUC Score:  0.994
---------- Adversarial data
              precision    recall  f1-score   support

         0.0       0.69      1.00      0.81       500
         1.0       1.00      0.55      0.71       500

    accuracy                           0.77      1000
   macro avg       0.84      0.77      0.76      1000
weighted avg       0.84      0.77      0.76      1000

Accuracy:  0.773
Detection Rate:  0.546
F1 Score:  0.7063389391979302
ROC AUC Score:  0.773
              hidden_layer_sizes=32)
---------- Non adversarial data
              precision    recall 

# Apollon

In [26]:
class MultiArmedBanditThompsonSampling:

    def __init__(self, n_arms, n_clusters):
        self.n_arms = n_arms
        self.n_clusters = n_clusters
        self.arms = [RandomForestClassifier(), DecisionTreeClassifier(), GaussianNB()]
        self.cluster_centers = None
        self.cluster_assignments = None
        self.reward_sums = {}
        for cluster in range(n_clusters):
            self.reward_sums[cluster] = np.zeros(n_arms)
        self.alpha = np.ones(self.n_arms)
        self.beta = np.ones(self.n_arms)

    def train(self, X_train, y_train):
        kmeans = KMeans(n_clusters=self.n_clusters)
        self.cluster_assignments = kmeans.fit_predict(X_train)
        self.cluster_centers = kmeans.cluster_centers_
        # Print the number of samples in each cluster

        for i in range(self.n_clusters):
            print('Cluster {}: {}'.format(
                i, np.sum(self.cluster_assignments == i)))
            cluster_mask = self.cluster_assignments == i
            cluster_X_train = X_train[cluster_mask]
            cluster_y_train = y_train[cluster_mask]
            for arm in range(self.n_arms):
                print('Training arm {} on cluster {}'.format(arm, i))
                arm_mask = cluster_y_train == arm
                arm_X_train = cluster_X_train[arm_mask]
                arm_y_train = cluster_y_train[arm_mask]
                if len(arm_X_train) > 0 and len(np.unique(arm_y_train)) > 1:
                    self.arms[arm].fit(arm_X_train, arm_y_train)
                else:
                    self.arms[arm].fit(X_train, y_train)

        # Set the arms rewards for each cluster
        for i in range(self.n_clusters):
            cluster_mask = self.cluster_assignments == i
            cluster_X_test = X_train[cluster_mask]
            cluster_y_test = y_train[cluster_mask]
            for arm in range(self.n_arms):
                print('Setting reward_sums arm {} on cluster {}'.format(arm, i))
                arm_mask = cluster_y_test == arm
                arm_X_test = cluster_X_test[arm_mask]
                arm_y_test = cluster_y_test[arm_mask]
                if len(arm_X_test) > 0:
                    arm_y_pred = self.arms[arm].predict(arm_X_test)
                    self.reward_sums[i][arm] = np.mean(
                        arm_y_pred == arm_y_test)

    def select_arm(self, cluster):
        # Select the arm with the highest reward
        theta = np.zeros(self.n_arms)
        for arm in range(self.n_arms):
            theta[arm] = np.random.beta(self.alpha[arm] + self.reward_sums[cluster]
                                        [arm], self.beta[arm] + 1 - self.reward_sums[cluster][arm])
        return np.argmax(theta)

    def predict(self, X_test):
        # Select the arm for each sample
        arms = np.zeros(len(X_test))
        for i in range(len(X_test)):
            cluster = np.argmin(np.linalg.norm(
                self.cluster_centers - X_test[i], axis=1))
            arms[i] = self.select_arm(cluster)
        # Predict using the selected arm
        y_pred = np.zeros(len(X_test))
        for arm in range(self.n_arms):
            arm_mask = arms == arm
            arm_X_test = X_test[arm_mask]
            if len(arm_X_test) > 0:
                y_pred[arm_mask] = self.arms[arm].predict(arm_X_test)
        return y_pred, arms


In [27]:
# Train the MAB
mab = MultiArmedBanditThompsonSampling(n_arms=3, n_clusters=2)
mab.train(x_train, y_train)

Cluster 0: 480619
Training arm 0 on cluster 0
Training arm 1 on cluster 0
Training arm 2 on cluster 0
Cluster 1: 152794
Training arm 0 on cluster 1
Training arm 1 on cluster 1
Training arm 2 on cluster 1
Setting reward_sums arm 0 on cluster 0
Setting reward_sums arm 1 on cluster 0
Setting reward_sums arm 2 on cluster 0
Setting reward_sums arm 0 on cluster 1
Setting reward_sums arm 1 on cluster 1
Setting reward_sums arm 2 on cluster 1


In [47]:
# Create a SklearnClassifier wrapper around the trained classifier
#classifier = Classifier(model=rf, clip_values=(0, 1), attacks=attacks_data)
models = [rf, mlp, nb, dt, lr]
accuracys = []
drs = []
f1s = []
rocs = []
for model in models:
    classifier = SklearnClassifier(model=model, clip_values=(0, 1))
    # Create the ZOO attack
    attack = ZooAttack(classifier=classifier, targeted=True, nb_parallel=60)
    # Generate adversarial data on the testing set
    x_test_adv = attack.generate(attacks_data[:500], np.zeros((attacks_data[:500].shape[0], 1)))

    non_adv_x_test = np.concatenate((attacks_data[:500], normal_data[:500]))
    non_adv_y_test = np.concatenate((np.ones((attacks_data[:500].shape[0], 1)), np.zeros((normal_data[:500].shape[0], 1))))
    adv_x_test = np.concatenate((x_test_adv, normal_data[:500]))
    adv_y_test = np.concatenate((np.ones((x_test_adv.shape[0], 1)), np.zeros((normal_data[:500].shape[0], 1))))


    # Evaluate the Model with the adversarial data and the non adversarial data
    print("====================> Model: ", model)
    # print("---------- Non adversarial data")
    # print(classification_report(non_adv_y_test, mab.predict(non_adv_x_test)[0]))
    # print("Accuracy: ", accuracy_score(non_adv_y_test, mab.predict(non_adv_x_test)[0]))
    # # Calculate the detection rate (attacks TP / attacks TP + attacks FN)
    # print("Detection Rate: ", recall_score(non_adv_y_test, mab.predict(non_adv_x_test)[0]))
    # print("F1 Score: ", f1_score(non_adv_y_test, mab.predict(non_adv_x_test)[0]))
    # print("ROC AUC Score: ", roc_auc_score(non_adv_y_test, mab.predict(non_adv_x_test)[0]))
    print("---------- Adversarial data")
    accuracy = accuracy_score(adv_y_test, mab.predict(adv_x_test)[0])
    accuracys.append(accuracy)
    dr = recall_score(adv_y_test, mab.predict(adv_x_test)[0])
    drs.append(dr)
    f1 = f1_score(adv_y_test, mab.predict(adv_x_test)[0])
    f1s.append(f1)
    roc = roc_auc_score(adv_y_test, mab.predict(adv_x_test)[0])
    rocs.append(roc)
    print(classification_report(adv_y_test, mab.predict(adv_x_test)[0]))
    print("Accuracy: ", accuracy)
    print("Detection Rate: ", dr)
    print("F1 Score: ", f1)
    print("ROC AUC Score: ", roc)

print("=====================================")
print("Accuracy: ", sum(accuracys)/len(accuracys))
print("Detection Rate: ", sum(drs)/len(drs))
print("F1 Score: ", sum(f1s)/len(f1s))
print("ROC AUC Score: ", sum(rocs)/len(rocs))



ZOO:   0%|          | 0/500 [00:00<?, ?it/s]

---------- Adversarial data
              precision    recall  f1-score   support

         0.0       0.88      0.99      0.94       500
         1.0       0.99      0.87      0.93       500

    accuracy                           0.93      1000
   macro avg       0.94      0.93      0.93      1000
weighted avg       0.94      0.93      0.93      1000

Accuracy:  0.937
Detection Rate:  0.862
F1 Score:  0.9192680301399354
ROC AUC Score:  0.933




ZOO:   0%|          | 0/500 [00:00<?, ?it/s]

              hidden_layer_sizes=32)
---------- Adversarial data
              precision    recall  f1-score   support

         0.0       0.87      1.00      0.93       500
         1.0       1.00      0.86      0.92       500

    accuracy                           0.93      1000
   macro avg       0.94      0.93      0.93      1000
weighted avg       0.94      0.93      0.93      1000

Accuracy:  0.915
Detection Rate:  0.888
F1 Score:  0.9263607257203842
ROC AUC Score:  0.94




ZOO:   0%|          | 0/500 [00:00<?, ?it/s]

---------- Adversarial data
              precision    recall  f1-score   support

         0.0       0.88      0.99      0.93       500
         1.0       0.99      0.86      0.92       500

    accuracy                           0.93      1000
   macro avg       0.94      0.93      0.93      1000
weighted avg       0.94      0.93      0.93      1000

Accuracy:  0.926
Detection Rate:  0.886
F1 Score:  0.9334741288278775
ROC AUC Score:  0.9309999999999999




ZOO:   0%|          | 0/500 [00:00<?, ?it/s]

---------- Adversarial data
              precision    recall  f1-score   support

         0.0       0.89      0.99      0.94       500
         1.0       0.98      0.88      0.93       500

    accuracy                           0.93      1000
   macro avg       0.94      0.93      0.93      1000
weighted avg       0.94      0.93      0.93      1000

Accuracy:  0.939
Detection Rate:  0.866
F1 Score:  0.941921858500528
ROC AUC Score:  0.938




ZOO:   0%|          | 0/500 [00:00<?, ?it/s]

---------- Adversarial data
              precision    recall  f1-score   support

         0.0       0.89      0.99      0.94       500
         1.0       0.99      0.88      0.93       500

    accuracy                           0.93      1000
   macro avg       0.94      0.93      0.93      1000
weighted avg       0.94      0.93      0.93      1000

Accuracy:  0.935
Detection Rate:  0.884
F1 Score:  0.9323467230443975
ROC AUC Score:  0.942
Accuracy:  0.9304
Detection Rate:  0.8772
F1 Score:  0.9306742932466247
ROC AUC Score:  0.9368000000000001
