 Reducing the Surface for Adversarial Attacks in Malware DetectorsBenjamín Peraus () and
Martin Jureček ()
A chapter in Machine Learning, Deep Learning and AI for Cybersecurity, 2025, pp 231-266 from Springer Abstract: Abstract Adversarial attacks pose a significant problem in malware detection because they allow relatively simple modifications to already detected malware to recreate undetectable malware and cause misclassification in machine learning models, even in black-box scenarios. The goal of this work is to study defensive techniques and implement a tool that can mitigate the impact of these attacks by preprocessing samples to minimize the attack surface needed to create adversarial samples. Our technique has been subjected to rigorous testing against a number of adversarial generators. The results of this testing have demonstrated the efficacy of our approach, with a notable reduction in the evasion rate of detection for most generators to zero percent. This has been achieved without any adverse impact on the detection accuracy of common malware. Date: 2025 There are no downloads for this item, see the EconPapers FAQ for hints about obtaining it. Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:spr:sprchp:978-3-031-83157-7_9 Ordering information: This item can be ordered from DOI: 10.1007/978-3-031-83157-7_9 Access Statistics for this chapter More chapters in Springer Books from Springer |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.