On Impact of Adversarial Evasion Attacks on ML-based Android Malware Classifier Trained on Hybrid Features

Husnain Rafiq, Nauman Aslam, Biju Issac, Rizwan Hamid Randhawa

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Due to the widespread usage of Android-based smartphones in the current era, Android malware has become a significant concern. From the perspective of t he a dvances in machine learning-based approaches in the previous decade, the research community has shown a dominant interest in applying these to counter Android malware. However, these ML-based classifiers are vulnerable to attacks. An attacker can deliberately fabricate the input application to force the classification algorithm to produce the desired output (evasion attack). In this study, first, w e propose HybridDroid, a n M L-based Android malware classifier trained o n hybrid features a nd optimized using the tree-based pipeline optimization technique (TPOT). Our experiments show that HybriDroid achieves a remarkable detection accuracy of up to 99.2% on a balanced excerpt of 36,000 malware and benign Android apps. Secondly, we explore the effectiveness of the proposed model in adversarial environments. We apply mimicry attacks, feature removal attacks and feature removal with injection attacks on HybriDroid. Our experiments reveal that ML-based malware classifiers are highly vulnerable to adversarial evasion attacks. Finally, we propose future directions to harden the security of ML-based Android malware classifiers in adversarial settings.
Original languageEnglish
Title of host publication2022 14th International Conference on Software, Knowledge, Information Management and Applications (SKIMA)
Place of PublicationPiscataway, US
PublisherIEEE
Pages216-221
Number of pages6
ISBN (Electronic)9781665493345, 9781665493338
ISBN (Print)9781665493352
DOIs
Publication statusPublished - 2 Dec 2022
EventThe 14th International Conference on Software, Knowledge, Information Management and Applications (SKIMA 2022) - Cambodia University of Technology and Science (CamTech University), Phnom Penh, Cambodia
Duration: 2 Dec 20224 Dec 2022
http://skimanetwork.org/

Publication series

NameInternational Conference on Software, Knowledge Information, Industrial Management and Applications (SKIMA)
PublisherIEEE
ISSN (Print)2373-082X
ISSN (Electronic)2573-3214

Conference

ConferenceThe 14th International Conference on Software, Knowledge, Information Management and Applications (SKIMA 2022)
Abbreviated titleSKIMA 2022
Country/TerritoryCambodia
CityPhnom Penh
Period2/12/224/12/22
Internet address

Fingerprint

Dive into the research topics of 'On Impact of Adversarial Evasion Attacks on ML-based Android Malware Classifier Trained on Hybrid Features'. Together they form a unique fingerprint.

Cite this