Leveraging Adversarial Samples for Enhanced Classification of Malicious and Evasive PDF Files-Reference-Cited by-同舟云学术

Leveraging Adversarial Samples for Enhanced Classification of Malicious and Evasive PDF Files

Published:2023-03-08 Issue:6 Volume:13 Page:3472
ISSN:2076-3417
Container-title:Applied Sciences
language:en
Short-container-title:Applied Sciences

Author:

Trad Fouad¹^ORCID,Hussein Ali¹,Chehab Ali¹^ORCID

Affiliation:

1. Electrical and Computer Engineering, American University of Beirut, Beirut 1107-2020, Lebanon

Abstract

The Portable Document Format (PDF) is considered one of the most popular formats due to its flexibility and portability across platforms. Although people have used machine learning techniques to detect malware in PDF files, the problem with these models is their weak resistance against evasion attacks, which constitutes a major security threat. The goal of this study is to introduce three machine learning-based systems that enhance malware detection in the presence of evasion attacks by substantially relying on evasive data to train malware and evasion detection models. To evaluate the robustness of the proposed systems, we used two testing datasets, a real dataset containing around 100,000 PDF samples and an evasive dataset containing 500,000 samples that we generated. We compared the results of the proposed systems to a baseline model that was not adversarially trained. When tested against the evasive dataset, the proposed systems provided an increase of around 80% in the f1-score compared to the baseline. This proves the value of the proposed approaches towards the ability to deal with evasive attacks.

Funder

Maroun Semaan Faculty of Engineering and Architecture (MSFEA) at the American University of Beirut

Publisher

MDPI AG

Subject

Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science

Link

https://www.mdpi.com/2076-3417/13/6/3472/pdf

Reference49 articles.

1. The recent trends in cyber security: A review;Kaur;J. King Saud Univ. Comput. Inf. Sci.,2022

2. A comprehensive review study of cyber-attacks and cyber security; Emerging trends and recent developments;Li;Energy Rep.,2021

3. A Comprehensive Review on Malware Detection Approaches;Aslan;IEEE Access,2020

4. Blonce, A., Filiol, E., and Frayssignes, L. (2008, January 24–28). Portable Document Format (PDF) Security Analysis and Malware Threats. Proceedings of the Europe BlackHat 2008 Conference, Amsterdam, The Netherlands.

5. Fleury, N., Dubrunquez, T., and Alouani, I. (2021). PDF-Malware: An Overview on Threats, Detection and Evasion Attacks. arXiv.