English
Related papers

Related papers: Functionality-preserving Black-box Optimization of…

200 papers

Recent work has shown that adversarial Windows malware samples - referred to as adversarial EXEmples in this paper - can bypass machine learning-based detection relying on static code analysis by perturbing relatively few input bytes. To…

Cryptography and Security · Computer Science 2021-06-29 Luca Demetrio , Scott E. Coull , Battista Biggio , Giovanni Lagorio , Alessandro Armando , Fabio Roli

In this paper, we present a generic, query-efficient black-box attack against API call-based machine learning malware classifiers. We generate adversarial examples by modifying the malware's API call sequences and non-sequential features…

Cryptography and Security · Computer Science 2020-10-06 Ishai Rosenberg , Asaf Shabtai , Yuval Elovici , Lior Rokach

An adversary who aims to steal a black-box model repeatedly queries the model via a prediction API to learn a function that approximates its decision boundary. Adversarial approximation is non-trivial because of the enormous combinations of…

Cryptography and Security · Computer Science 2020-06-30 Abdullah Ali , Birhanu Eshete

Machine learning (ML) classifiers are vulnerable to adversarial examples. An adversarial example is an input sample which is slightly modified to induce misclassification in an ML classifier. In this work, we investigate white-box and…

Cryptography and Security · Computer Science 2019-04-17 Yonghong Huang , Utkarsh Verma , Celeste Fralick , Gabriel Infante-Lopez , Brajesh Kumarz , Carl Woodward

Recent work has shown that deep-learning algorithms for malware detection are also susceptible to adversarial examples, i.e., carefully-crafted perturbations to input malware that enable misleading classification. Although this has…

Cryptography and Security · Computer Science 2019-01-25 Luca Demetrio , Battista Biggio , Giovanni Lagorio , Fabio Roli , Alessandro Armando

Machine learning based intrusion detection systems are increasingly targeted by black box adversarial attacks, where attackers craft evasive inputs using indirect feedback such as binary outputs or behavioral signals like response time and…

Cryptography and Security · Computer Science 2025-12-16 Sabrine Ennaji , Elhadj Benkhelifa , Luigi Vincenzo Mancini

Recent researches have shown that machine learning based malware detection algorithms are very vulnerable under the attacks of adversarial examples. These works mainly focused on the detection algorithms which use features with fixed…

Machine Learning · Computer Science 2017-05-24 Weiwei Hu , Ying Tan

Given the remarkable achievements of existing learning-based malware detection in both academia and industry, this paper presents MalGuise, a practical black-box adversarial attack framework that evaluates the security risks of existing…

Cryptography and Security · Computer Science 2024-07-04 Xiang Ling , Zhiyu Wu , Bin Wang , Wei Deng , Jingzheng Wu , Shouling Ji , Tianyue Luo , Yanjun Wu

Decision-based evasion attacks repeatedly query a black-box classifier to generate adversarial examples. Prior work measures the cost of such attacks by the total number of queries made to the classifier. We argue this metric is flawed.…

Cryptography and Security · Computer Science 2024-02-15 Edoardo Debenedetti , Nicholas Carlini , Florian Tramèr

Machine learning is becoming increasingly popular as a go-to approach for many tasks due to its world-class results. As a result, antivirus developers are incorporating machine learning models into their products. While these models improve…

Cryptography and Security · Computer Science 2024-03-19 Matouš Kozák , Martin Jureček , Mark Stamp , Fabio Di Troia

Machine learning malware detectors are vulnerable to adversarial EXEmples, i.e., carefully-crafted Windows programs tailored to evade detection. Unlike other adversarial problems, attacks in this context must be functionality-preserving, a…

Machine Learning · Computer Science 2026-01-14 Marco Rando , Luca Demetrio , Lorenzo Rosasco , Fabio Roli

Malware authors are continuously evolving their code base to include counter-analysis methods that can significantly hinder their detection and blocking. While the execution of malware in a sandboxed environment may provide a lot of…

Cryptography and Security · Computer Science 2022-04-11 Vasilis Vouvoutsis , Fran Casino , Constantinos Patsakis

Anti-malware engines are the first line of defense against malicious software. While widely used, feature engineering-based anti-malware engines are vulnerable to unseen (zero-day) attacks. Recently, deep learning-based static anti-malware…

Cryptography and Security · Computer Science 2020-12-16 Mohammadreza Ebrahimi , Ning Zhang , James Hu , Muhammad Taqi Raza , Hsinchun Chen

Recently researchers have proposed using deep learning-based systems for malware detection. Unfortunately, all deep learning classification systems are vulnerable to adversarial attacks. Previous work has studied adversarial attacks against…

Cryptography and Security · Computer Science 2017-12-19 Jack W. Stokes , De Wang , Mady Marinescu , Marc Marino , Brian Bussone

While machine learning is vulnerable to adversarial examples, it still lacks systematic procedures and tools for evaluating its security in different application contexts. In this article, we discuss how to develop automated and scalable…

Cryptography and Security · Computer Science 2022-07-13 Luca Demetrio , Battista Biggio , Fabio Roli

Over the last decade, researchers have extensively explored the vulnerabilities of Android malware detectors to adversarial examples through the development of evasion attacks; however, the practicality of these attacks in real-world…

Machine Learning · Computer Science 2024-01-26 Hamid Bostani , Veelasha Moonsamy

Modern commercial antivirus systems increasingly rely on machine learning to keep up with the rampant inflation of new malware. However, it is well-known that machine learning models are vulnerable to adversarial examples (AEs). Previous…

Cryptography and Security · Computer Science 2021-05-03 Wei Song , Xuezixiang Li , Sadia Afroz , Deepali Garg , Dmitry Kuznetsov , Heng Yin

Machine-learning models have been recently used for detecting malicious Android applications, reporting impressive performances on benchmark datasets, even when trained only on features statically extracted from the application, such as…

Machine Learning · Computer Science 2018-10-30 Marco Melis , Davide Maiorca , Battista Biggio , Giorgio Giacinto , Fabio Roli

Machine-learning methods have already been exploited as useful tools for detecting malicious executable files. They leverage data retrieved from malware samples, such as header fields, instruction sequences, or even raw bytes, to learn…

Cryptography and Security · Computer Science 2018-03-13 Bojan Kolosnjaji , Ambra Demontis , Battista Biggio , Davide Maiorca , Giorgio Giacinto , Claudia Eckert , Fabio Roli

In this paper, we present a black-box attack against API call based machine learning malware classifiers, focusing on generating adversarial sequences combining API calls and static features (e.g., printable strings) that will be…

Cryptography and Security · Computer Science 2018-06-26 Ishai Rosenberg , Asaf Shabtai , Lior Rokach , Yuval Elovici
‹ Prev 1 2 3 10 Next ›