The next Military Operations Research Society (MORS) Data Science and Artificial Intelligence Community of Practice meeting will take place on Wednesday, September 28, 2022 at Noon EST.
During this meeting, we will have a guest speaker, Dr. Saurabh Shintre, Principal Threat Scientist at Splunk Inc., speak on "Malware Makeover: Breaking ML-Based Static Analysis using Adversarial Machine Learning."
Motivated by the transformative impact of deep neural networks (DNNs) in various domains, researchers and anti-virus vendors have proposed DNNs for malware detection from raw bytes that do not require manual feature engineering. In this work, we propose an attack that interweaves binary-diversification techniques and optimization frameworks to mislead such DNNs while preserving the functionality of binaries. Unlike prior attacks, ours manipulates instructions that are a functional part of the binary, which makes it particularly challenging to defend against. We evaluated our attack against three DNNs in white-and black-box settings, and found that it often achieved success rates near 100%. Moreover, we found that our attack can fool some commercial anti-viruses, in certain cases with a success rate of 85%. Towards the end, we will discuss defensive strategies against such attacks.
Dr. Saurabh Shintre is a Principal Threat Scientist at Splunk Inc. His research interests lie at the intersection of security and machine learning. He has published over 20 papers and patents in security and privacy and has been invited by numerous media outlets, such as CNBC and Washington Post, to comment on these topics. He serves as a program committee member for many security conferences and was previously selected as a Future Leader by the Science and Technology in Society (STS) forum. He received his PhD in computer security from Carnegie Mellon University, Pittsburgh.
Please use the below to join:
Conference Line: +1 (669) 224-3412
Access Code: 716-833-909