Salvato in:
| Autori principali: | , , , , |
|---|---|
| Natura: | Preprint |
| Pubblicazione: |
2024
|
| Soggetti: | |
| Accesso online: | https://arxiv.org/abs/2402.11227 |
| Tags: |
Aggiungi Tag
Nessun Tag, puoi essere il primo ad aggiungerne!!
|
| _version_ | 1866909110980575232 |
|---|---|
| author | Oliver, Jonathan Mo, Jue Yenkar, Susmit Batta, Raghav Josyoula, Sekhar |
| author_facet | Oliver, Jonathan Mo, Jue Yenkar, Susmit Batta, Raghav Josyoula, Sekhar |
| contents | Similarity has been applied to a wide range of security applications, typically used in machine learning models. We examine the problem posed by masquerading samples; that is samples crafted by bad actors to be similar or near identical to legitimate samples. We find that these samples potentially create significant problems for machine learning solutions. The primary problem being that bad actors can circumvent machine learning solutions by using masquerading samples.
We then examine the interplay between digital signatures and machine learning solutions. In particular, we focus on executable files and code signing. We offer a taxonomy for masquerading files. We use a combination of similarity and clustering to find masquerading files. We use the insights gathered in this process to offer improvements to similarity based and machine learning security solutions. |
| format | Preprint |
| id |
arxiv_https___arxiv_org_abs_2402_11227 |
| institution | arXiv |
| publishDate | 2024 |
| record_format | arxiv |
| spellingShingle | On the Role of Similarity in Detecting Masquerading Files Oliver, Jonathan Mo, Jue Yenkar, Susmit Batta, Raghav Josyoula, Sekhar Cryptography and Security Machine Learning Similarity has been applied to a wide range of security applications, typically used in machine learning models. We examine the problem posed by masquerading samples; that is samples crafted by bad actors to be similar or near identical to legitimate samples. We find that these samples potentially create significant problems for machine learning solutions. The primary problem being that bad actors can circumvent machine learning solutions by using masquerading samples. We then examine the interplay between digital signatures and machine learning solutions. In particular, we focus on executable files and code signing. We offer a taxonomy for masquerading files. We use a combination of similarity and clustering to find masquerading files. We use the insights gathered in this process to offer improvements to similarity based and machine learning security solutions. |
| title | On the Role of Similarity in Detecting Masquerading Files |
| topic | Cryptography and Security Machine Learning |
| url | https://arxiv.org/abs/2402.11227 |