A network intrusion detection model end-to-end adversarial training defense method and device
By generating adversarial examples in the feature space and problem space and training them through dynamic game theory, the problem of insufficient adversarial example defense capability in network intrusion detection systems is solved, and the robustness and generalization ability of the model are improved.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Patents(China)
- Current Assignee / Owner
- CHINA STATE SHIPBUILDING CORP LTD RESEARCH INSTITUTE 719
- Filing Date
- 2026-03-26
- Publication Date
- 2026-06-19
AI Technical Summary
Existing network intrusion detection systems perform poorly when faced with adversarial examples, and existing defense methods are unable to effectively resist attacks with different perturbation intensities and spatialities, resulting in decreased model classification accuracy for clean traffic data, and a lack of diversity in training samples and a single strategy.
By setting up an adversarial sample generator based on adversarial domain constraints, adversarial samples in the feature space and problem space are generated. Through adversarial training and policy parameter optimization, a dynamic game mechanism is formed to generate diverse adversarial samples, ensuring that they comply with network protocol specifications and feature logic consistency, thereby improving the robustness of the model.
This invention enhances the intrusion detection model's defense capabilities against different attack modes, solves the problem of limited defense generalization ability in existing technologies, and improves the model's robustness and generalization.
Smart Images

Figure CN121923942B_ABST