pith. sign in

arxiv: 2501.15563 · v2 · pith:EW6KAWANnew · submitted 2025-01-26 · 💻 cs.LG · cs.CR· cs.NI

PCAP-Backdoor: Backdoor Poisoning Generator for Network Traffic in CPS/IoT Environments

classification 💻 cs.LG cs.CRcs.NI
keywords backdoortrafficnetworkattacksmodeldeeppoisoningsystems
0
0 comments X
read the original abstract

The rapid expansion of connected devices has made them prime targets for cyberattacks. To address these threats, deep learning-based, data-driven intrusion detection systems (IDS) have emerged as powerful tools for detecting and mitigating such attacks. These IDSs analyze network traffic to identify unusual patterns and anomalies that may indicate potential security breaches. However, prior research has shown that deep learning models are vulnerable to backdoor attacks, where attackers inject triggers into the model to manipulate its behavior and cause misclassifications of network traffic. In this paper, we explore the susceptibility of deep learning-based IDS systems to backdoor attacks in the context of network traffic analysis. We introduce \texttt{PCAP-Backdoor}, a novel technique that facilitates backdoor poisoning attacks on PCAP datasets. Our experiments on real-world Cyber-Physical Systems (CPS) and Internet of Things (IoT) network traffic datasets demonstrate that attackers can effectively backdoor a model by poisoning as little as 1\% or less of the entire training dataset. Moreover, we show that an attacker can introduce a trigger into benign traffic during model training yet cause the backdoored model to misclassify malicious traffic when the trigger is present. Finally, we highlight the difficulty of detecting this trigger-based backdoor, even when using existing backdoor defense techniques.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 3 Pith papers

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. CLIP-guided Diffusion Model for Backdoor Generation in Sensor-based Human Activity Recognition

    cs.LG 2026-06 unverdicted novelty 5.0

    A CLIP-guided diffusion model generates backdoor triggers for IMU-based HAR models, achieving successful attacks at a 10% backdoor injection rate.

  2. Backdoor Attacks on Fault Detection and Localization in Cyber-Physical Systems

    cs.CR 2026-05 unverdicted novelty 4.0

    Backdoor attacks succeed against ML fault detection and localization in CPS even when only 10% of the training data is poisoned.

  3. Internet of Things Security: A Survey on Common Attacks

    cs.CR 2026-05 accept novelty 2.0

    A survey of 28 IoT attacks classified via STRIDE and CVSS, mapped to Process/Code/Communication/Operation/Device vulnerabilities, with mitigations and research gaps.