on attacking s tatistical s pam filters
play

On Attacking S tatistical S pam Filters Greg Wittel & S . - PowerPoint PPT Presentation

Aug 13, 2022 •167 likes •392 views

On Attacking S tatistical S pam Filters Greg Wittel & S . Felix Wu U.C. Davis CEAS 2004 1 Outline Introduction Attack Classes Testing A New Attack Conclusions & Future 2 Attack Classes Attempted attack

  1. On Attacking S tatistical S pam Filters Greg Wittel & S . Felix Wu U.C. Davis CEAS 2004 1

  2. Outline • Introduction • Attack Classes • Testing A New Attack • Conclusions & Future 2

  3. Attack Classes • Attempted attack methods: – Tokenization • Works against feature selection by splitting or modifying key message features • e.g. S plitting up words with spaces, HTML tricks – Obfuscation • Use encoding or misdirection to hide contents from filter • e.g. HTML/ URL encoding, letter substitution 3

  4. Attack Classes cont. – Weak Statistical • S kew message statistics by adding in random data • e.g. Add in random words, fake HTML tags, random text excerpts – Strong Statistical • Differentiated from ‘ weak’ attacks by using more intelligence in the attack • Guessing v. educated guessing • e.g. Graham-Cumming Attack 4

  5. Attack Classes cont. – Misc: • S parse Data attack • Hash breaking attacks 5

  6. Testing A New Attack • Tested two types of attacks: – Dictionary word attack (old) – Common word attack (new) • Both attacks add n random words to a base message. • Tested against two filters: – CRM114 - S parse binary poly. + Naïve Bayesian – SpamBayes (S B) - Naïve bayesian 6

  7. Procedure • Training data – 3000 hams from S pamAssassin corpus – 3000 spams from S pamArchive-mod corpus – CRM114 trained on errors – SB using bulk training 7

  8. Procedure cont. • Test data – Started with a base ‘ picospam’ not in training data: From: Kelsey Stone <bouhooh@entitlement.com> To: submit@spamarchive.org Subject: Erase hidden Spies or Trojan Horses from your computer Erase E-Spyware from your computer http://boozofoof.spywiper.biz 8

  9. Procedure cont. • Test data cont. – Base picospam is detectable by filters – Generated 1000 variations with n words added. • Words selected with and without replacement • n = 10, 25, 50, 100, 200, 300, 400 – Recorded classifications, effect on score 9

  10. Results • Using 10,000 variants didn’ t effect results • S election with/ without replacement had no effect • Mixed results 10

  11. CRM114 Results • Both attacks failed; 0 false negatives • S pam score was effected... 11

  12. CRM114 Results cont. 1 0.95 Base score Spam probability 0.9 0.85 0.8 Dictionary Common 0.75 0 10 25 50 100 200 300 400 Words added 12

  13. SpamBayes Results • Baseline Dictionary attack: mild success • Common word attack... 13

  14. S pamBayes Results cont. Dictionary 1 Common Spam Thresh. 0.8 Spam probability 0.6 0.4 0.2 Ham Thresh. 0 0 10 25 50 100 200 300 400 Words added 14

  15. S pamBayes Results cont. • Common word attack reduces attack size by up to 4x • What Happened? Why such poor performance on either attack? • Hypothesis: Basis picospam was not in training data. • Added the basis spam to S B’ s training data… 15

  16. S pamBayes Results Part 2 • Retrained filter offered greater resistance to ‘ weak’ dictionary attack. • S mall performance gain against common word attack. • Gains not big enough to resist attack 16

  17. S pamBayes Results Part 2 cont. Dict ionary Word Attack Before 1 After Spam Thresh. 0.8 Spam probability 0.6 0.4 0.2 Ham Thresh. 0 0 10 25 50 100 200 300 400 Words added 17

  18. S pamBayes Results Part 2 cont. Common Word At tack Before 1 After Spam Thresh. 0.8 Spam probability 0.6 0.4 0.2 Ham Thresh. 0 0 10 25 50 100 200 300 400 Words added 18

  19. Conclusion & Future... • Mixed success of common word attack shows need for further study • Other filters – Bogofilter shows similar vulnerability • Effect of re-training on attack msgs v. – False negative, false positive rate • Testing other basis picospams 19

  20. Future cont. • What makes a filter hard to distract? • Relevance of independence assumption • More advanced attacks – Natural language generation • Traditional software flaws – Exploitable buffer overflows – Remote code execution 20

  21. Colophon • Contact information: – Greg Wittel ( wittel at cs . ucdavis . edu ) – S. Felix Wu ( wu at cs . ucdavis . edu ) • Questions? 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Who Whos Really Attacking Y s Really Attacking Your our #WHOAMI Threat

Who Whos Really Attacking Y s Really Attacking Your our #WHOAMI Threat

Who Whos Really Attacking Y s Really Attacking Your our #WHOAMI Threat Researcher at Trend Micro- research and blogger on criminal underground, persistent threats,

792 views • 44 slides
H ( s ) x ( t ) y ( t ) 1 1 1 c c c x ( t ) = A cos( t + ) Bandpass

H ( s ) x ( t ) y ( t ) 1 1 1 c c c x ( t ) = A cos( t + ) Bandpass

Analog Filters Overview To Do List Discuss time-domain versus frequency domain characteristics Ideal Filters Overshoot First-Order Filters Settling time Active &amp; Passive Filters Show examples of filters applied to

319 views • 16 slides
Overview of Discrete-Time Filters First-order filters Ideal filters Practical filters

Overview of Discrete-Time Filters First-order filters Ideal filters Practical filters

Overview of Discrete-Time Filters First-order filters Ideal filters Practical filters Frequency-selective filter specifications Ripple versus filter order tradeoff Application example Portland State University ECE 223 DT

588 views • 40 slides
SAP Security: Attacking SAP users Attacking SAP users with sapsploit eXtended 1.1 Xt d d 1 1

SAP Security: Attacking SAP users Attacking SAP users with sapsploit eXtended 1.1 Xt d d 1 1

SAP Security: Attacking SAP users Attacking SAP users with sapsploit eXtended 1.1 Xt d d 1 1 Alexander @sh2kerr Polyakov. PCI QSA,PA-QSA 11 We change look but we keep mind Company Digital Security Research Group International

924 views • 59 slides
Optimum IIR Filters Introduction and Scope Definitions Discussed FIR filters for both

Optimum IIR Filters Introduction and Scope Definitions Discussed FIR filters for both

Optimum IIR Filters Introduction and Scope Definitions Discussed FIR filters for both stationary and nonstationary cases Design and properties For simplicity and due to time constraints, will limit discussion of IIR filters to

1.2k views • 7 slides
W HAT S IN A N AME ? E VALUATING S TATISTICAL A TTACKS ON P ERSONAL K NOWLEDGE Q UESTIONS

W HAT S IN A N AME ? E VALUATING S TATISTICAL A TTACKS ON P ERSONAL K NOWLEDGE Q UESTIONS

W HAT S IN A N AME ? E VALUATING S TATISTICAL A TTACKS ON P ERSONAL K NOWLEDGE Q UESTIONS Joseph Bonneau Mike Just Greg Matthews jcb82@cl.cam.ac.uk Computer Laboratory Financial Cryptography and Data Security 2010 Tenerife, Spain January

882 views • 70 slides
Practical Analog Filters Overview Types of practical filters Filter specifications

Practical Analog Filters Overview Types of practical filters Filter specifications

Practical Analog Filters Overview Types of practical filters Filter specifications Tradeoffs Many examples J. McNames Portland State University ECE 222 Practical Analog Filters Ver. 1.04 1 Ideal Filters Lowpass Highpass

643 views • 48 slides
Finite Impulse Response (FIR) Digital Filters Digital filters are rapidly replacing classic

Finite Impulse Response (FIR) Digital Filters Digital filters are rapidly replacing classic

Finite Impulse Response (FIR) Digital Filters Digital filters are rapidly replacing classic analog filters. Programmable DSP with MAC can be used to implement digital filters. For high-bandwidth signal processing applications,

540 views • 20 slides
MOI has two main product lines for its component business: 1. Tunable filters (FFP-TF, FFP-TF2,

MOI has two main product lines for its component business: 1. Tunable filters (FFP-TF, FFP-TF2,

MOI has two main product lines for its component business: 1. Tunable filters (FFP-TF, FFP-TF2, FFP-SI) 2. Fixed filters (FFP-I, picoWave) 1 1. Fiber Fabry-Perot Tunable Filters is MOIs core technology. 2. MOI can design standard filters

559 views • 21 slides
C LASSIFICATION T REE A NALYSIS : A U SEFUL S TATISTICAL T OOL FOR P ROGRAM E VALUATORS Meredith

C LASSIFICATION T REE A NALYSIS : A U SEFUL S TATISTICAL T OOL FOR P ROGRAM E VALUATORS Meredith

C LASSIFICATION T REE A NALYSIS : A U SEFUL S TATISTICAL T OOL FOR P ROGRAM E VALUATORS Meredith L. Philyaw, MS Jennifer Lyons, MSW(c) Why This Session? Stand up if you... Consider yourself to be a data analyst, frequently work with

673 views • 41 slides
HLT MET Noise Filters in Run2011B Alex Mott Caltech Review of Noise Filters HBHE noise

HLT MET Noise Filters in Run2011B Alex Mott Caltech Review of Noise Filters HBHE noise

HLT MET Noise Filters in Run2011B Alex Mott Caltech Review of Noise Filters HBHE noise filters were deployed online earlier this year Based on the offline Hcal HBHE Noise filters used in the PromptReco For HLT, add an additional

338 views • 11 slides
S TATISTICAL M ODELING OF S POT I NSTANCE P RICES IN P UBLIC C LOUD E NVIRONMENTS Bahman Javadi ,

S TATISTICAL M ODELING OF S POT I NSTANCE P RICES IN P UBLIC C LOUD E NVIRONMENTS Bahman Javadi ,

S TATISTICAL M ODELING OF S POT I NSTANCE P RICES IN P UBLIC C LOUD E NVIRONMENTS Bahman Javadi , Ruppa K. Thulasiram , and Rajkumar Buyya Cloud Computing and Distributed Systems (CLOUDS) Laboratory Department of Computer Science and Software

611 views • 23 slides
Comparison of orientated and spatially variant morphological filters vs mean/median filters for

Comparison of orientated and spatially variant morphological filters vs mean/median filters for

Comparison of orientated and spatially variant morphological filters vs mean/median filters for adaptive image denoising Rafael Verd-Monedero 1 , Jess Angulo 2 , Jorge Larrey-Ruiz 1 , Juan Morales-Snchez 1 1 Dpto. de Tecnologas de la

778 views • 51 slides
filters filtratietechniek separatietechniek www.auxill.nl filters filtratietechniek

filters filtratietechniek separatietechniek www.auxill.nl filters filtratietechniek

SCS Strainer filters filtratietechniek separatietechniek www.auxill.nl filters filtratietechniek separatietechniek Self Cleaning Suction Screens Applications o Irrigation systems Rain systems o Golf courses o Tennis courts o

168 views • 6 slides
Kalman Filters 1 Kalman filters Modelling systems described by a set of continuous variables,

Kalman Filters 1 Kalman filters Modelling systems described by a set of continuous variables,

Kalman Filters 1 Kalman filters Modelling systems described by a set of continuous variables, e.g., tracking a bird flying X t = X, Y, Z, X, Y , Z . Airplanes, robots, ecosystems, economies, chemical plants, planets, . . . X X t t

2.51k views • 8 slides
Revisiting Bloom Filters Payload attribution via Hierarchiecal Bloom Filters Kulesh

Revisiting Bloom Filters Payload attribution via Hierarchiecal Bloom Filters Kulesh

Revisiting Bloom Filters Payload attribution via Hierarchiecal Bloom Filters Kulesh Shanmugasundaram, Herve Bronnimann, Nasir Memon 600.624 - Advanced Network Security version 3 Overview Questions Collaborative Intrusion Detection

1.29k views • 58 slides
FERMION DARK MATTER Accepted to JHEP [arXiv:1106.2162] Cornell University In collaboration with

FERMION DARK MATTER Accepted to JHEP [arXiv:1106.2162] Cornell University In collaboration with

GOLDSTONE FERMION DARK MATTER Accepted to JHEP [arXiv:1106.2162] Cornell University In collaboration with B. Bellazzini, C. Cski, J. Hubisz, and J. Shao SUSY , 29 August 2011 1 / 23 Flip Tanedo pt267@cornell.edu Goldstone Fermion Dark

831 views • 40 slides
Introduction to Functional Programming in Python David Jones drj@ravenbrook.com Python and

Introduction to Functional Programming in Python David Jones drj@ravenbrook.com Python and

Introduction to Functional Programming in Python David Jones drj@ravenbrook.com Python and Functional Programming Beginner Journeyman Master Programming: Modes of Operation Functional Programming Object Oriented Programming Imperative

793 views • 24 slides
Prss tr

Prss tr

r t str rt r str str Pt trt

662 views • 29 slides
2 6 5/7/2015 1 :

2 6 5/7/2015 1 :

2 6 5/7/2015 1 : SQL ANY ALL

628 views • 29 slides
D o m a i n - S p e c i f i c T e s t i n g T o o l s L e s s o n

D o m a i n - S p e c i f i c T e s t i n g T o o l s L e s s o n

D o ma i n - S p e c i f i c T e s t i n g T o o l s D o m a i n - S p e c i f i c T e s t i n g T o o l s L e s s o n s l e a r n e d f r o m t h e A p a c h e S l i

464 views • 33 slides
Scalability + Performance a choose your own adventure game hosted by James Cox 1 Tuesday, 1

Scalability + Performance a choose your own adventure game hosted by James Cox 1 Tuesday, 1

Scalability + Performance a choose your own adventure game hosted by James Cox 1 Tuesday, 1 April 2008 1 Begin Your Adventure... Art &amp; The End Planning Hosting &amp; Deployment Ruby &amp; Rails Caching Testing MySQL 2 Tuesday,

229 views • 20 slides
Professionalisation of university lecturers The UTQ and beyond VSNU, May 2018

Professionalisation of university lecturers The UTQ and beyond VSNU, May 2018

Professionalisation of university lecturers The UTQ and beyond VSNU, May 2018 Professionalisation of university lecturers The UTQ and beyond VSNU, May 2018 Colophon VSNU, 24 May 2018 This is a joint publication by the 14 universities

940 views • 32 slides
Research Designs I. Use analysis of text to shed light on attitudes and values of the source

Research Designs I. Use analysis of text to shed light on attitudes and values of the source

Content Analysis Research Designs I. Use analysis of text to shed light on attitudes and values of the source McClellands analysis of childrens fiction as a measure of achievement motive Dodds- Danforth study of

253 views • 9 slides

More recommend