On Embedding Backdoor in Malware Detectors Using Machine Learning

Shoichiro Sasaki; Seira Hidano; Toshihiro Uchibayashi; Takuo Suganuma; Masahiro Hiji; Shinsaku Kiyomoto

doi:10.1109/PST47121.2019.8949034

On Embedding Backdoor in Malware Detectors Using Machine Learning

Shoichiro Sasaki, Seira Hidano, Toshihiro Uchibayashi, Takuo Suganuma, Masahiro Hiji, Shinsaku Kiyomoto

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

7 Citations (Scopus)

Abstract

Researching for malware detection using machine learning is becoming active. However, conventional detection techniques do not consider the impact of attacks on machine learning, which has become complicated in recent years. In this research, we focus on data poisoning attack, which is one of the typical attacks on machine learning, and aim to clarify the influence of attacks on malware detection technology. Data poisoning attack is an attack method that intentionally manipulates the predicted result of a learned model by injecting poisoning data into training data, and by applying this, it is possible to embed a backdoor that induces mis-prediction of only specific input data. In this paper, we first propose an attack framework for backdoor embedding that prevents detection of only specific types of malware by data poisoning attack. Next, we will describe a method to generate poisoning data efficiently while avoiding attack detection by solving the optimization problem. Furthermore, we take malware detection technology using logistic regression and show the effectiveness of the our method through evaluation experiments using two datasets.

Original language	English
Title of host publication	2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings
Editors	Ali Ghorbani, Indrakshi Ray, Arash Habibi Lashkari, Jie Zhang, Rongxing Lu
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781728132655
DOIs	https://doi.org/10.1109/PST47121.2019.8949034
Publication status	Published - Aug 2019
Externally published	Yes
Event	17th International Conference on Privacy, Security and Trust, PST 2019 - Fredericton, Canada Duration: Aug 26 2019 → Aug 28 2019

Publication series

Name	2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings

Conference

Conference	17th International Conference on Privacy, Security and Trust, PST 2019
Country/Territory	Canada
City	Fredericton
Period	8/26/19 → 8/28/19

All Science Journal Classification (ASJC) codes

Information Systems
Safety, Risk, Reliability and Quality
Computer Networks and Communications
Information Systems and Management

Access to Document

10.1109/PST47121.2019.8949034

Cite this

Sasaki, S., Hidano, S., Uchibayashi, T., Suganuma, T., Hiji, M., & Kiyomoto, S. (2019). On Embedding Backdoor in Malware Detectors Using Machine Learning. In A. Ghorbani, I. Ray, A. H. Lashkari, J. Zhang, & R. Lu (Eds.), 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings Article 8949034 (2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/PST47121.2019.8949034

On Embedding Backdoor in Malware Detectors Using Machine Learning. / Sasaki, Shoichiro; Hidano, Seira; Uchibayashi, Toshihiro et al.
2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings. ed. / Ali Ghorbani; Indrakshi Ray; Arash Habibi Lashkari; Jie Zhang; Rongxing Lu. Institute of Electrical and Electronics Engineers Inc., 2019. 8949034 (2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sasaki, S, Hidano, S, Uchibayashi, T, Suganuma, T, Hiji, M & Kiyomoto, S 2019, On Embedding Backdoor in Malware Detectors Using Machine Learning. in A Ghorbani, I Ray, AH Lashkari, J Zhang & R Lu (eds), 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings., 8949034, 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings, Institute of Electrical and Electronics Engineers Inc., 17th International Conference on Privacy, Security and Trust, PST 2019, Fredericton, Canada, 8/26/19. https://doi.org/10.1109/PST47121.2019.8949034

Sasaki S, Hidano S, Uchibayashi T, Suganuma T, Hiji M, Kiyomoto S. On Embedding Backdoor in Malware Detectors Using Machine Learning. In Ghorbani A, Ray I, Lashkari AH, Zhang J, Lu R, editors, 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings. Institute of Electrical and Electronics Engineers Inc. 2019. 8949034. (2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings). doi: 10.1109/PST47121.2019.8949034

Sasaki, Shoichiro ; Hidano, Seira ; Uchibayashi, Toshihiro et al. / On Embedding Backdoor in Malware Detectors Using Machine Learning. 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings. editor / Ali Ghorbani ; Indrakshi Ray ; Arash Habibi Lashkari ; Jie Zhang ; Rongxing Lu. Institute of Electrical and Electronics Engineers Inc., 2019. (2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings).

@inproceedings{dcdd8c18bdce48d086d3f11cc7ef9672,

title = "On Embedding Backdoor in Malware Detectors Using Machine Learning",

abstract = "Researching for malware detection using machine learning is becoming active. However, conventional detection techniques do not consider the impact of attacks on machine learning, which has become complicated in recent years. In this research, we focus on data poisoning attack, which is one of the typical attacks on machine learning, and aim to clarify the influence of attacks on malware detection technology. Data poisoning attack is an attack method that intentionally manipulates the predicted result of a learned model by injecting poisoning data into training data, and by applying this, it is possible to embed a backdoor that induces mis-prediction of only specific input data. In this paper, we first propose an attack framework for backdoor embedding that prevents detection of only specific types of malware by data poisoning attack. Next, we will describe a method to generate poisoning data efficiently while avoiding attack detection by solving the optimization problem. Furthermore, we take malware detection technology using logistic regression and show the effectiveness of the our method through evaluation experiments using two datasets.",

author = "Shoichiro Sasaki and Seira Hidano and Toshihiro Uchibayashi and Takuo Suganuma and Masahiro Hiji and Shinsaku Kiyomoto",

year = "2019",

month = aug,

doi = "10.1109/PST47121.2019.8949034",

language = "English",

series = "2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

editor = "Ali Ghorbani and Indrakshi Ray and Lashkari, {Arash Habibi} and Jie Zhang and Rongxing Lu",

booktitle = "2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings",

address = "United States",

note = "17th International Conference on Privacy, Security and Trust, PST 2019 ; Conference date: 26-08-2019 Through 28-08-2019",

}

TY - GEN

T1 - On Embedding Backdoor in Malware Detectors Using Machine Learning

AU - Sasaki, Shoichiro

AU - Hidano, Seira

AU - Uchibayashi, Toshihiro

AU - Suganuma, Takuo

AU - Hiji, Masahiro

AU - Kiyomoto, Shinsaku

PY - 2019/8

Y1 - 2019/8

N2 - Researching for malware detection using machine learning is becoming active. However, conventional detection techniques do not consider the impact of attacks on machine learning, which has become complicated in recent years. In this research, we focus on data poisoning attack, which is one of the typical attacks on machine learning, and aim to clarify the influence of attacks on malware detection technology. Data poisoning attack is an attack method that intentionally manipulates the predicted result of a learned model by injecting poisoning data into training data, and by applying this, it is possible to embed a backdoor that induces mis-prediction of only specific input data. In this paper, we first propose an attack framework for backdoor embedding that prevents detection of only specific types of malware by data poisoning attack. Next, we will describe a method to generate poisoning data efficiently while avoiding attack detection by solving the optimization problem. Furthermore, we take malware detection technology using logistic regression and show the effectiveness of the our method through evaluation experiments using two datasets.

AB - Researching for malware detection using machine learning is becoming active. However, conventional detection techniques do not consider the impact of attacks on machine learning, which has become complicated in recent years. In this research, we focus on data poisoning attack, which is one of the typical attacks on machine learning, and aim to clarify the influence of attacks on malware detection technology. Data poisoning attack is an attack method that intentionally manipulates the predicted result of a learned model by injecting poisoning data into training data, and by applying this, it is possible to embed a backdoor that induces mis-prediction of only specific input data. In this paper, we first propose an attack framework for backdoor embedding that prevents detection of only specific types of malware by data poisoning attack. Next, we will describe a method to generate poisoning data efficiently while avoiding attack detection by solving the optimization problem. Furthermore, we take malware detection technology using logistic regression and show the effectiveness of the our method through evaluation experiments using two datasets.

UR - http://www.scopus.com/inward/record.url?scp=85078813840&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85078813840&partnerID=8YFLogxK

U2 - 10.1109/PST47121.2019.8949034

DO - 10.1109/PST47121.2019.8949034

M3 - Conference contribution

T3 - 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings

BT - 2019 17th International Conference on Privacy, Security and Trust, PST 2019 - Proceedings

A2 - Ghorbani, Ali

A2 - Ray, Indrakshi

A2 - Lashkari, Arash Habibi

A2 - Zhang, Jie

A2 - Lu, Rongxing

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 17th International Conference on Privacy, Security and Trust, PST 2019

Y2 - 26 August 2019 through 28 August 2019

ER -

On Embedding Backdoor in Malware Detectors Using Machine Learning

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this