EC-Model: An Evolvable Malware Classification Model

Shan Hsin Lee, Shen Chieh Lan, Hsiu Chuan Huang, Chia Wei Hsu, Yung Shiu Chen, Shiuhpyng Shieh

    Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

    Abstract

    Malware evolves quickly as new attack, evasion and mutation techniques are commonly used by hackers to build new malicious malware families. For malware detection and classification, multi-class learning model is one of the most popular machine learning models being used. To recognize malicious programs, multi-class model requires malware types to be predefined as output classes in advance which cannot be dynamically adjusted after the model is trained. When a new variant or type of malicious programs is discovered, the trained multi-class model will be no longer valid and have to be retrained completely. This consumes a significant amount of time and resources, and cannot adapt quickly to meet the timely requirement in dealing with dynamically evolving malware types. To cope with the problem, an evolvable malware classification deep learning model, namely EC-Model, is proposed in this paper which can dynamically adapt to new malware types without the need of fully retraining. Consequently, the reaction time can be significantly reduced to meet the timely requirement of malware classification. To our best knowledge, our work is the first attempt to adopt multi-task, deep learning for evolvable malware classification.

    Original languageEnglish
    Title of host publication2021 IEEE Conference on Dependable and Secure Computing, DSC 2021
    PublisherInstitute of Electrical and Electronics Engineers Inc.
    ISBN (Electronic)9781728175348
    DOIs
    StatePublished - 30 Jan 2021
    Event2021 IEEE Conference on Dependable and Secure Computing, DSC 2021 - Aizuwakamatsu, Fukushima, Japan
    Duration: 30 Jan 20212 Feb 2021

    Publication series

    Name2021 IEEE Conference on Dependable and Secure Computing, DSC 2021

    Conference

    Conference2021 IEEE Conference on Dependable and Secure Computing, DSC 2021
    Country/TerritoryJapan
    CityAizuwakamatsu, Fukushima
    Period30/01/212/02/21

    Keywords

    • Deep learning
    • Malware detection
    • Multi-task learning

    Fingerprint

    Dive into the research topics of 'EC-Model: An Evolvable Malware Classification Model'. Together they form a unique fingerprint.

    Cite this