The rise of machine learning for detection and classification of malware: Research developments, trends and challenges

Similarity-based Android Malware Detection Using Hamming Distance of Static Binary Features

A survey on machine learning-based malware detection in executable files

MalDAE: Detecting and explaining malware based on correlation and fusion of static and dynamic characteristics

A dynamic Windows malware detection and prediction method based on contextual understanding of API call sequence

MalInsight: A systematic profiling based malware detection framework

With the rapid evolution of the Internet, the application of artificial intelligence fields is more and more extensive, and the era of AI has come. At the same time, adversarial attacks in the AI field are also frequent. Therefore, the research into adversarial attack security is extremely urgent. An increasing number of researchers are working in this field. We provide a comprehensive review of the theories and methods that enable researchers to enter the field of adversarial attack. This article is according to the “Why? → What? → How?” research line for elaboration. Firstly, we explain the significance of adversarial attack. Then, we introduce the concepts, types, and hazards of adversarial attack. Finally, we review the typical attack algorithms and defense techniques in each application area. Facing the increasingly complex neural network model, this paper focuses on the fields of image, text, and malicious code and focuses on the adversarial attack classifications and methods of these three data types, so that researchers can quickly find their own type of study. At the end of this review, we also raised some discussions and open issues and compared them with other similar reviews.

/pdf/a-survey-on-adversarial-attack-in-the-age-of-artificial-2nxz6pckog.pdf

A Survey on Adversarial Attack in the Age of Artificial Intelligence

In the era of cyberspace, malware is the main weapon for launching cyber-attacks and the critical rival for the security community. More and more researchers are investing in the wave of anti-malware research. In order to promote researchers to enter the field of anti-malware research more smoothly, it is necessary to provide a comprehensive roadmap of the related theory and techniques, so that new researchers can quickly obtain the desiring knowledge. To this end, this article systematically reviews the knowledge of malware in accordance with the most effective research route, that is, “Why? → What? → How?”First, we analyze the significance of conducting malware research and explains “why?”; then, the concept, type, and harm of malware are summarized, and introduce “what?”; finally, the focus is on “how?”, i.e. malware detection and classification. In the presence of the increasing complexity of malware types and scales, this paper focuses on machine learning-based detection and classification methods in view of feature engineering and analysis environment. The abstract and contributions are summarized for each typical method so that researchers can quickly find the preferred references like a dictionary, and establish a comprehensive and clear framework for anti-malware research in a correct route.

Review: Build a Roadmap for Stepping Into the Field of Anti-Malware Research Smoothly

With the rapid development of the Internet, the application of the Internet of things and big data is more and more extensive. The era of Internet of everything (IoE) has come, and the traditional cloud computing model has been unable to efficiently process the massive data generated by a large number of edge devices. Therefore, edge-type big data processing which is oriented to massive data computing generated by network edge devices—edge computing comes into being. However, due to the complexity of edge computing, data security and privacy issues become more prominent. Aiming at the security authentication of edge equipment under the Internet of everything, this paper designs an identity authentication framework under the Internet of everything based on edge computing. In the framework, multi-factor identity authentication is applied to solve the weakness of edge equipment security authentication. Moreover, the software defined network technology (SDN) is adopted to realize the global management of the deployment and application of a large number of edge equipment, which can effectively realize the effective security protection of the Internet of everything. In the end, the formalized verification of the identity authentication process of the designed framework is carried out.

Zixiao Kong

Papers

MalDAE: Detecting and explaining malware based on correlation and fusion of static and dynamic characteristics

MalInsight: A systematic profiling based malware detection framework

A Survey on Adversarial Attack in the Age of Artificial Intelligence

Review: Build a Roadmap for Stepping Into the Field of Anti-Malware Research Smoothly

Identity Authentication Under Internet of Everything Based on Edge Computing