From Blue-Sky to Practical Adversarial Learning

Aminollah Khormali; Ahmed Abusnaina; Songqing Chen; Dae Hun Nyang; David Mohaisen

doi:10.1109/TPS-ISA50397.2020.00025

From Blue-Sky to Practical Adversarial Learning

Aminollah Khormali, Ahmed Abusnaina, Songqing Chen, Dae Hun Nyang, David Mohaisen

Cyber Security

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The state-of-the-art of adversarial machine learning on malware detection systems generally yield unexecutable samples. In this work, we make the case for understanding the robustness of visualization-based malware detection system against adversarial examples (AEs) that not only are able to fool models, but also maintain the executability of the original input. To motivate for our vision, we first investigate the application of existing off-the-shelf adversarial attack approaches on malware detection systems through which we found that those approaches do not necessarily maintain the functionality of the original inputs. Then, we discuss an approach for achieving a high misclassification rate and maintaining the executability and functionality of the original input. We use visualization-based malware detection as an example to highlight the gap between blue-sky research that focuses on aspect of the learning process, and call for more practical techniques that respect the semantics of the underlying applications.

Original language	English
Title of host publication	Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	118-127
Number of pages	10
ISBN (Electronic)	9781728185439
DOIs	https://doi.org/10.1109/TPS-ISA50397.2020.00025
State	Published - Oct 2020
Event	2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020 - Virtual, Atlanta, United States Duration: 1 Dec 2020 → 3 Dec 2020

Publication series

Name	Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020

Conference

Conference	2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020
Country/Territory	United States
City	Virtual, Atlanta
Period	1/12/20 → 3/12/20

Keywords

Adversarial Examples
Deep Learning
Malware Detection
Visualization

Access to Document

10.1109/TPS-ISA50397.2020.00025

Cite this

Khormali, A., Abusnaina, A., Chen, S., Nyang, D. H., & Mohaisen, D. (2020). From Blue-Sky to Practical Adversarial Learning. In Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020 (pp. 118-127). [9325358] (Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/TPS-ISA50397.2020.00025

Khormali, Aminollah ; Abusnaina, Ahmed ; Chen, Songqing ; Nyang, Dae Hun ; Mohaisen, David. / From Blue-Sky to Practical Adversarial Learning. Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020. Institute of Electrical and Electronics Engineers Inc., 2020. pp. 118-127 (Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020).

@inproceedings{a8d8a91b9973439da78bd58c8d51591d,

title = "From Blue-Sky to Practical Adversarial Learning",

abstract = "The state-of-the-art of adversarial machine learning on malware detection systems generally yield unexecutable samples. In this work, we make the case for understanding the robustness of visualization-based malware detection system against adversarial examples (AEs) that not only are able to fool models, but also maintain the executability of the original input. To motivate for our vision, we first investigate the application of existing off-the-shelf adversarial attack approaches on malware detection systems through which we found that those approaches do not necessarily maintain the functionality of the original inputs. Then, we discuss an approach for achieving a high misclassification rate and maintaining the executability and functionality of the original input. We use visualization-based malware detection as an example to highlight the gap between blue-sky research that focuses on aspect of the learning process, and call for more practical techniques that respect the semantics of the underlying applications.",

keywords = "Adversarial Examples, Deep Learning, Malware Detection, Visualization",

author = "Aminollah Khormali and Ahmed Abusnaina and Songqing Chen and Nyang, {Dae Hun} and David Mohaisen",

note = "Funding Information: This work was supported in part by CyberFlorida Collaborative Seed Award (2020), NSF CNS-2007153, and the National Research Foundation of South Korea under grant NRF-2016K1A1A2912757. Funding Information: ACKNOWLEDGEMENT This work was supported in part by CyberFlorida Collaborative Seed Award (2020), NSF CNS-2007153, and the National Research Foundation of South Korea under grant NRF-2016K1A1A2912757. Publisher Copyright: {\textcopyright} 2020 IEEE.; null ; Conference date: 01-12-2020 Through 03-12-2020",

year = "2020",

month = oct,

doi = "10.1109/TPS-ISA50397.2020.00025",

language = "English",

series = "Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "118--127",

booktitle = "Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020",

}

Khormali, A, Abusnaina, A, Chen, S, Nyang, DH & Mohaisen, D 2020, From Blue-Sky to Practical Adversarial Learning. in Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020., 9325358, Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020, Institute of Electrical and Electronics Engineers Inc., pp. 118-127, 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020, Virtual, Atlanta, United States, 1/12/20. https://doi.org/10.1109/TPS-ISA50397.2020.00025

From Blue-Sky to Practical Adversarial Learning. / Khormali, Aminollah; Abusnaina, Ahmed; Chen, Songqing; Nyang, Dae Hun; Mohaisen, David.

Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020. Institute of Electrical and Electronics Engineers Inc., 2020. p. 118-127 9325358 (Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - From Blue-Sky to Practical Adversarial Learning

AU - Khormali, Aminollah

AU - Abusnaina, Ahmed

AU - Chen, Songqing

AU - Nyang, Dae Hun

AU - Mohaisen, David

N1 - Funding Information: This work was supported in part by CyberFlorida Collaborative Seed Award (2020), NSF CNS-2007153, and the National Research Foundation of South Korea under grant NRF-2016K1A1A2912757. Funding Information: ACKNOWLEDGEMENT This work was supported in part by CyberFlorida Collaborative Seed Award (2020), NSF CNS-2007153, and the National Research Foundation of South Korea under grant NRF-2016K1A1A2912757. Publisher Copyright: © 2020 IEEE.

PY - 2020/10

Y1 - 2020/10

N2 - The state-of-the-art of adversarial machine learning on malware detection systems generally yield unexecutable samples. In this work, we make the case for understanding the robustness of visualization-based malware detection system against adversarial examples (AEs) that not only are able to fool models, but also maintain the executability of the original input. To motivate for our vision, we first investigate the application of existing off-the-shelf adversarial attack approaches on malware detection systems through which we found that those approaches do not necessarily maintain the functionality of the original inputs. Then, we discuss an approach for achieving a high misclassification rate and maintaining the executability and functionality of the original input. We use visualization-based malware detection as an example to highlight the gap between blue-sky research that focuses on aspect of the learning process, and call for more practical techniques that respect the semantics of the underlying applications.

AB - The state-of-the-art of adversarial machine learning on malware detection systems generally yield unexecutable samples. In this work, we make the case for understanding the robustness of visualization-based malware detection system against adversarial examples (AEs) that not only are able to fool models, but also maintain the executability of the original input. To motivate for our vision, we first investigate the application of existing off-the-shelf adversarial attack approaches on malware detection systems through which we found that those approaches do not necessarily maintain the functionality of the original inputs. Then, we discuss an approach for achieving a high misclassification rate and maintaining the executability and functionality of the original input. We use visualization-based malware detection as an example to highlight the gap between blue-sky research that focuses on aspect of the learning process, and call for more practical techniques that respect the semantics of the underlying applications.

KW - Adversarial Examples

KW - Deep Learning

KW - Malware Detection

KW - Visualization

UR - http://www.scopus.com/inward/record.url?scp=85100427150&partnerID=8YFLogxK

U2 - 10.1109/TPS-ISA50397.2020.00025

DO - 10.1109/TPS-ISA50397.2020.00025

M3 - Conference contribution

AN - SCOPUS:85100427150

T3 - Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020

SP - 118

EP - 127

BT - Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 1 December 2020 through 3 December 2020

ER -

Khormali A, Abusnaina A, Chen S, Nyang DH, Mohaisen D. From Blue-Sky to Practical Adversarial Learning. In Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020. Institute of Electrical and Electronics Engineers Inc. 2020. p. 118-127. 9325358. (Proceedings - 2020 2nd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications, TPS-ISA 2020). https://doi.org/10.1109/TPS-ISA50397.2020.00025

From Blue-Sky to Practical Adversarial Learning

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this