Analyzing Machine Learning Approaches for Online Malware Detection in
Cloud
- URL: http://arxiv.org/abs/2105.09268v1
- Date: Wed, 19 May 2021 17:28:12 GMT
- Title: Analyzing Machine Learning Approaches for Online Malware Detection in
Cloud
- Authors: Jeffrey C Kimmell, Mahmoud Abdelsalam, Maanak Gupta
- Abstract summary: We present online malware detection based on process level performance metrics and analyze the effectiveness of different machine learning models.
Our analysis conclude that neural network models can most accurately detect the malware that have on the process level features of virtual machines in the cloud.
- Score: 0.0
- License: http://creativecommons.org/licenses/by/4.0/
- Abstract: The variety of services and functionality offered by various cloud service
providers (CSP) have exploded lately. Utilizing such services has created
numerous opportunities for enterprises infrastructure to become cloud-based
and, in turn, assisted the enterprises to easily and flexibly offer services to
their customers. The practice of renting out access to servers to clients for
computing and storage purposes is known as Infrastructure as a Service (IaaS).
The popularity of IaaS has led to serious and critical concerns with respect to
the cyber security and privacy. In particular, malware is often leveraged by
malicious entities against cloud services to compromise sensitive data or to
obstruct their functionality. In response to this growing menace, malware
detection for cloud environments has become a widely researched topic with
numerous methods being proposed and deployed. In this paper, we present online
malware detection based on process level performance metrics, and analyze the
effectiveness of different baseline machine learning models including, Support
Vector Classifier (SVC), Random Forest Classifier (RFC), KNearest Neighbor
(KNN), Gradient Boosted Classifier (GBC), Gaussian Naive Bayes (GNB) and
Convolutional Neural Networks (CNN). Our analysis conclude that neural network
models can most accurately detect the impact malware have on the process level
features of virtual machines in the cloud, and therefore are best suited to
detect them. Our models were trained, validated, and tested by using a dataset
of 40,680 malicious and benign samples. The dataset was complied by running
different families of malware (collected from VirusTotal) in a live cloud
environment and collecting the process level features.
Related papers
- Towards Novel Malicious Packet Recognition: A Few-Shot Learning Approach [0.0]
Deep Packet Inspection (DPI) has emerged as a key technology in strengthening network security.
This study proposes a novel approach that leverages a large language model (LLM) and few-shot learning.
Our approach shows promising results with an average accuracy of 86.35% and F1-Score of 86.40% on different malware types.
arXiv Detail & Related papers (2024-09-17T15:02:32Z) - Online Clustering of Known and Emerging Malware Families [1.2289361708127875]
It is essential to categorize malware samples according to their malicious characteristics.
Online clustering algorithms help us to understand malware behavior and produce a quicker response to new threats.
This paper introduces a novel machine learning-based model for the online clustering of malicious samples into malware families.
arXiv Detail & Related papers (2024-05-06T09:20:17Z) - Discovering Malicious Signatures in Software from Structural
Interactions [7.06449725392051]
We propose a novel malware detection approach that leverages deep learning, mathematical techniques, and network science.
Our approach focuses on static and dynamic analysis and utilizes the Low-Level Virtual Machine (LLVM) to profile applications within a complex network.
Our approach marks a substantial improvement in malware detection, providing a notably more accurate and efficient solution.
arXiv Detail & Related papers (2023-12-19T23:42:20Z) - Unsupervised Point Cloud Representation Learning with Deep Neural
Networks: A Survey [104.71816962689296]
Unsupervised point cloud representation learning has attracted increasing attention due to the constraint in large-scale point cloud labelling.
This paper provides a comprehensive review of unsupervised point cloud representation learning using deep neural networks.
arXiv Detail & Related papers (2022-02-28T07:46:05Z) - VELVET: a noVel Ensemble Learning approach to automatically locate
VulnErable sTatements [62.93814803258067]
This paper presents VELVET, a novel ensemble learning approach to locate vulnerable statements in source code.
Our model combines graph-based and sequence-based neural networks to successfully capture the local and global context of a program graph.
VELVET achieves 99.6% and 43.6% top-1 accuracy over synthetic data and real-world data, respectively.
arXiv Detail & Related papers (2021-12-20T22:45:27Z) - Detecting malicious PDF using CNN [46.86114958340962]
Malicious PDF files represent one of the biggest threats to computer security.
We propose a novel algorithm that uses an ensemble of Convolutional Neural Network (CNN) on the byte level of the file.
We show, using a data set of 90000 files downloadable online, that our approach maintains a high detection rate (94%) of PDF malware.
arXiv Detail & Related papers (2020-07-24T18:27:45Z) - Dense-Resolution Network for Point Cloud Classification and Segmentation [42.316932316581635]
DRNet is designed to learn local point features from the point cloud in different resolutions.
In addition to validating the network on widely used point cloud segmentation and classification benchmarks, we also test and visualize the performance of the components.
arXiv Detail & Related papers (2020-05-14T06:13:53Z) - A Privacy-Preserving Distributed Architecture for
Deep-Learning-as-a-Service [68.84245063902908]
This paper introduces a novel distributed architecture for deep-learning-as-a-service.
It is able to preserve the user sensitive data while providing Cloud-based machine and deep learning services.
arXiv Detail & Related papers (2020-03-30T15:12:03Z) - Analyzing CNN Based Behavioural Malware Detection Techniques on Cloud
IaaS [0.0]
Cloud Infrastructure as a Service (I) is vulnerable to malware due to its exposure to external adversaries.
This paper analyzes and compares various Convolutional Neural Networks (CNNs) for online detection of malware in cloud I.
arXiv Detail & Related papers (2020-02-15T14:04:33Z) - CryptoSPN: Privacy-preserving Sum-Product Network Inference [84.88362774693914]
We present a framework for privacy-preserving inference of sum-product networks (SPNs)
CryptoSPN achieves highly efficient and accurate inference in the order of seconds for medium-sized SPNs.
arXiv Detail & Related papers (2020-02-03T14:49:18Z) - Towards Deep Federated Defenses Against Malware in Cloud Ecosystems [0.24366811507669117]
In cloud computing environments with many virtual machines, containers, and other systems, an epidemic of malware can be highly threatening to business processes.
We introduce a hierarchical approach to performing malware detection and analysis using several recent advances in machine learning on graphs, hypergraphs, and natural language.
arXiv Detail & Related papers (2019-12-27T23:46:06Z)
This list is automatically generated from the titles and abstracts of the papers in this site.
This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.