- Title
- Selective adversarial learning for mobile malware
- Creator
- Khoda, Mahbub; Imam, Tasadduq; Kamruzzaman, Joarder; Gondal, Iqbal; Rahman, Ashfaqur
- Date
- 2019
- Type
- Text; Conference proceedings; Conference paper
- Identifier
- http://researchonline.federation.edu.au/vital/access/HandleResolver/1959.17/171205
- Identifier
- vital:14300
- Identifier
-
https://doi.org/10.1109/TrustCom/BigDataSE.2019.00044
- Identifier
- ISBN:9781728127767
- Abstract
- Machine learning models, including deep neural networks, have been shown to be vulnerable to adversarial attacks. Adversarial samples are crafted from legitimate inputs by carefully introducing small perturbation to the input so that the classifier is fooled. Adversarial retraining, which involves retraining the classifier using adversarial samples, has been shown to improve the robustness of the classifier against adversarial attacks. However, it has been also shown that retraining with too many samples can lead to performance degradation. Hence, a careful selection of the adversarial samples that are used to retrain the classifier is necessary, yet existing works select these samples in a randomized fashion. In our work, we propose two novel approaches for selecting adversarial samples: based on the distance from cluster center of malware and based on the probability derived from a kernel based learning (KBL). Our experiment results show that both of our selective mechanisms for adversarial retraining outperform the random selection technique and significantly improve the classifier performance against adversarial attacks. In particular, selection with KBL delivers above 6% improvement in detection accuracy compared to random selection. The method proposed here has greater impact in designing robust machine learning system for security applications. © 2019 IEEE.; E1
- Publisher
- Institute of Electrical and Electronics Engineers Inc.
- Relation
- 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications/13th IEEE International Conference on Big Data Science and Engineering, TrustCom/BigDataSE 2019 p. 272-279
- Rights
- Copyright 2019 Elsevier B.V.
- Rights
- This metadata is freely available under a CCO license
- Subject
- Adversarial retraining; Mobile malware; Selective samples
- Reviewed
- Hits: 1857
- Visitors: 1713
- Downloads: 0
Thumbnail | File | Description | Size | Format |
---|