國立虎尾科技大學 |

Automated Machine Learning for Malware Detection with Deep Learning.

Record Type:	Language materials, printed : Monograph/item
Title/Author:	Automated Machine Learning for Malware Detection with Deep Learning./
Author:	Brown, Austin.
Published:	Ann Arbor : ProQuest Dissertations & Theses, : 2022,
Description:	72 p.
Notes:	Source: Masters Abstracts International, Volume: 84-03.
Contained By:	Masters Abstracts International84-03.
Subject:	Computer science. -
Online resource:	http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=29258983
ISBN:	9798841746997

Automated Machine Learning for Malware Detection with Deep Learning.
Brown, Austin.

Automated Machine Learning for Malware Detection with Deep Learning. - Ann Arbor : ProQuest Dissertations & Theses, 2022 - 72 p.

Source: Masters Abstracts International, Volume: 84-03.

Thesis (M.S.)--Tennessee Technological University, 2022.

This item must not be sold to any third party vendors.

Deep learning (DL) has proven to be very effective in detecting sophisticated malware that is constantly evolving. Even though deep learning has alleviated the feature engineering problem, finding the most optimal DL model, in terms of neural architecture search (NAS) and the model's optimal set of hyper-parameters, remains a challenge that requires domain expertise. In addition, many of the proposed state-of-the-art models are very complex and may not be the best fit for different datasets. A promising approach, known as Automated Machine Learning (AutoML), can reduce the domain expertise required to implement a custom DL model. AutoML reduces the amount of human trial-and-error involved in designing DL models, and in more recent implementations can find new model architectures with relatively low computational overhead.Research on the feasibility of using AutoML for malware detection is very limited.As such, first, this thesis provides a comprehensive analysis and insights on using AutoML for static malware detection. Our analysis is performed on two widely used malware datasets: SOREL-20M to demonstrate efficacy on large datasets; and EMBER-2018, a smaller dataset specifically curated to hinder the performance of machine learning models. In addition, we show the effects of tuning the NAS process parameters on finding a more optimal malware detection model on these static analysis datasets.We also show that AutoML is performant in online detection scenarios using Convolutional Neural Networks (CNNs) to detect malware execution. We compare an AutoML technique to six existing state-of-the-art CNNs using a newly generated online malware dataset with and without other applications running in the background during malware execution. We show that the AutoML technique is more performant than the state-of-the-art CNNs with little overhead in finding the architecture.Our experimental results show that the performance of AutoML based malware detection models are on par or better than state-of-the-art models or hand-designed models designed presented in other works.

ISBN: 9798841746997Subjects--Topical Terms:

573171
Computer science.
Subjects--Index Terms:

Automated machine learning

Automated Machine Learning for Malware Detection with Deep Learning.
LDR:03329nam a2200421 4500 001 1104638
005 20230619080108.5
006 m o d
007 cr#unu||||||||
008 230907s2022 ||||||||||||||||| ||eng d
020 $a 9798841746997
035 $a (MiAaPQ)AAI29258983
035 $a AAI29258983
040 $a MiAaPQ $c MiAaPQ
100 1 $a Brown, Austin. $3 1413539
245 1 0 $a Automated Machine Learning for Malware Detection with Deep Learning.
260 1 $a Ann Arbor : $b ProQuest Dissertations & Theses, $c 2022
300 $a 72 p.
500 $a Source: Masters Abstracts International, Volume: 84-03.
500 $a Advisor: Gupta, Maanak.
502 $a Thesis (M.S.)--Tennessee Technological University, 2022.
506 $a This item must not be sold to any third party vendors.
520 $a Deep learning (DL) has proven to be very effective in detecting sophisticated malware that is constantly evolving. Even though deep learning has alleviated the feature engineering problem, finding the most optimal DL model, in terms of neural architecture search (NAS) and the model's optimal set of hyper-parameters, remains a challenge that requires domain expertise. In addition, many of the proposed state-of-the-art models are very complex and may not be the best fit for different datasets. A promising approach, known as Automated Machine Learning (AutoML), can reduce the domain expertise required to implement a custom DL model. AutoML reduces the amount of human trial-and-error involved in designing DL models, and in more recent implementations can find new model architectures with relatively low computational overhead.Research on the feasibility of using AutoML for malware detection is very limited.As such, first, this thesis provides a comprehensive analysis and insights on using AutoML for static malware detection. Our analysis is performed on two widely used malware datasets: SOREL-20M to demonstrate efficacy on large datasets; and EMBER-2018, a smaller dataset specifically curated to hinder the performance of machine learning models. In addition, we show the effects of tuning the NAS process parameters on finding a more optimal malware detection model on these static analysis datasets.We also show that AutoML is performant in online detection scenarios using Convolutional Neural Networks (CNNs) to detect malware execution. We compare an AutoML technique to six existing state-of-the-art CNNs using a newly generated online malware dataset with and without other applications running in the background during malware execution. We show that the AutoML technique is more performant than the state-of-the-art CNNs with little overhead in finding the architecture.Our experimental results show that the performance of AutoML based malware detection models are on par or better than state-of-the-art models or hand-designed models designed presented in other works.
590 $a School code: 0390.
650 4 $a Computer science. $3 573171
650 4 $a Computer engineering. $3 569006
650 4 $a Information technology. $3 559429
653 $a Automated machine learning
653 $a AutoML
653 $a Cyber security
653 $a Deep learning
653 $a Machine learning
653 $a Malware
690 $a 0984
690 $a 0489
690 $a 0464
690 $a 0800
710 2 $a Tennessee Technological University. $b Computer Science. $3 1413540
773 0 $t Masters Abstracts International $g 84-03.
790 $a 0390
791 $a M.S.
792 $a 2022
793 $a English
856 4 0 $u http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=29258983