Binary Black‐Box Adversarial Attacks with Evolutionary Learning against IoT Malware Detection | Zendy

Fangwei Wang | Zendy; Yuanyuan Lu | Zendy; Chang-Guang Wang | Zendy; Qingru Li | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Binary Black‐Box Adversarial Attacks with Evolutionary Learning against IoT Malware Detection

Author(s) -

Fangwei Wang,

Yuanyuan Lu,

Chang-Guang Wang,

Qingru Li

Publication year - 2021

Publication title -

wireless communications and mobile computing

Language(s) - English

Resource type - Journals

SCImago Journal Rank - 0.42

H-Index - 64

eISSN - 1530-8677

pISSN - 1530-8669

DOI - 10.1155/2021/8736946

Subject(s) - computer science , malware , black box , adversarial system , computer security , internet of things , binary number , adversarial machine learning , machine learning , artificial intelligence , mathematics , arithmetic

5G is about to open Pandora’s box of security threats to the Internet of Things (IoT). Key technologies, such as network function virtualization and edge computing introduced by the 5G network, bring new security threats and risks to the Internet infrastructure. Therefore, higher detection and defense against malware are required. Nowadays, deep learning (DL) is widely used in malware detection. Recently, research has demonstrated that adversarial attacks have posed a hazard to DL-based models. The key issue of enhancing the antiattack performance of malware detection systems that are used to detect adversarial attacks is to generate effective adversarial samples. However, numerous existing methods to generate adversarial samples are manual feature extraction or using white-box models, which makes it not applicable in the actual scenarios. This paper presents an effective binary manipulation-based attack framework, which generates adversarial samples with an evolutionary learning algorithm. The framework chooses some appropriate action sequences to modify malicious samples. Thus, the modified malware can successfully circumvent the detection system. The evolutionary algorithm can adaptively simplify the modification actions and make the adversarial sample more targeted. Our approach can efficiently generate adversarial samples without human intervention. The generated adversarial samples can effectively combat DL-based malware detection models while preserving the consistency of the executable and malicious behavior of the original malware samples. We apply the generated adversarial samples to attack the detection engines of VirusTotal. Experimental results illustrate that the adversarial samples generated by our method reach an evasion success rate of 47.8%, which outperforms other attack methods. By adding adversarial samples in the training process, the MalConv network is retrained. We show that the detection accuracy is improved by 10.3%.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research