EC-Model: An Evolvable Malware Classification Model

Shan Hsin Lee, Shen Chieh Lan, Hsiu Chuan Huang, Chia Wei Hsu, Yung Shiu Chen, Shiuhpyng Shieh

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Malware evolves quickly as new attack, evasion and mutation techniques are commonly used by hackers to build new malicious malware families. For malware detection and classification, multi-class learning model is one of the most popular machine learning models being used. To recognize malicious programs, multi-class model requires malware types to be predefined as output classes in advance which cannot be dynamically adjusted after the model is trained. When a new variant or type of malicious programs is discovered, the trained multi-class model will be no longer valid and have to be retrained completely. This consumes a significant amount of time and resources, and cannot adapt quickly to meet the timely requirement in dealing with dynamically evolving malware types. To cope with the problem, an evolvable malware classification deep learning model, namely EC-Model, is proposed in this paper which can dynamically adapt to new malware types without the need of fully retraining. Consequently, the reaction time can be significantly reduced to meet the timely requirement of malware classification. To our best knowledge, our work is the first attempt to adopt multi-task, deep learning for evolvable malware classification.

Original languageEnglish
Title of host publication2021 IEEE Conference on Dependable and Secure Computing, DSC 2021
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781728175348
DOIs
StatePublished - 30 Jan 2021
Event2021 IEEE Conference on Dependable and Secure Computing, DSC 2021 - Aizuwakamatsu, Fukushima, Japan
Duration: 30 Jan 20212 Feb 2021

Publication series

Name2021 IEEE Conference on Dependable and Secure Computing, DSC 2021

Conference

Conference2021 IEEE Conference on Dependable and Secure Computing, DSC 2021
CountryJapan
CityAizuwakamatsu, Fukushima
Period30/01/212/02/21

Keywords

  • Deep learning
  • Malware detection
  • Multi-task learning

Fingerprint Dive into the research topics of 'EC-Model: An Evolvable Malware Classification Model'. Together they form a unique fingerprint.

Cite this