Name
Abstract | ||
|---|---|---|
Automated malware classification using deep learning techniques has been widely researched in recent years. However, existing studies addressing this problem are always based on the assumption of closed world, where all the categories are known and fixed. Thus, they lack robustness and do not have the ability to recognize novel malware instances. In this paper, we propose a prototype-based approach to perform robust malware traffic classification with novel class detection. We design a new objective function where a distance based cross entropy (DCE) loss term and a metric regularization (MR) term are included. The DCE term ensures the discrimination of different classes, and the MR term improves the within-class compactness and expands the between-class separateness in the deeply learned feature space, which enables the robustness of novel class detection. Extensive experiments have been conducted on datasets with real malware traffic. The experimental results demonstrate that our proposed approach outperforms the existing methods and achieves state-of-the-art results. |
Year | DOI | Venue |
|---|---|---|
2019 | 10.1007/978-3-030-41579-2_1 | INFORMATION AND COMMUNICATIONS SECURITY (ICICS 2019) |
Keywords | DocType | Volume |
Malware classification, Convolutional Neural Network, Novelty detection | Conference | 11999 |
ISSN | Citations | PageRank |
0302-9743 | 0 | 0.34 |
References | Authors | |
0 | 5 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Lixin Zhao | 1 | 0 | 1.69 |
| Li-jun Cai | 2 | 37 | 13.57 |
| Aimin Yu | 3 | 4 | 4.80 |
| Zhen Xu | 4 | 21 | 17.33 |
| Dan Meng | 5 | 37 | 16.11 |