Towards moving target defense for IoT malware detection
Machine learning (ML) techniques show promise in malware defense for the Internet of Things (IoT), but are vulnerable to tailored adversarial attacks. Moving target defense (MTD) is a security strategy that actively raises the cost to the attacker of a potential attack by changing the target’s characteristics, preventing attackers from profiling the target. In this work we explore the potential for using an MTD defense for IoT malware detection. Applying MTD to protect ML malware detection involves continuously changing the malware classification models, defeating attempts to profile the models. We research the state-of-the-art literature that uses an MTD-style strategy to increase ML model security. We identify two techniques: ‘Naive MTD’, which cycles between static models, and ‘Full MTD’, which refreshes models at runtime and is therefore more effective. Focusing on the studies in the ML literature that use Full MTD for adversarial robustness, we examine their approach, assessing features such as discard policy, decision-making and model updating schedule. We make a number of recommendations on development of a Full MTD strategy for ML IoT malware detection.
Sat 18 AprDisplayed time zone: Brasilia, Distrito Federal, Brazil change
16:00 - 17:30 | Development Support and Engineering & Reverse-engineeringSERP4IoT at Capri I Chair(s): Rodrigo Morales Concordia University | ||
16:00 10mShort-paper | Bootstrapping IoT Provisioning with PoMA SERP4IoT | ||
16:10 20mFull-paper | A Hybrid AHP-TOPSIS Approach for Selecting Message Brokers in IoT Applications SERP4IoT Mahdi Turki École de technologie supérieure, Ghizlane El Boussaidi École de Technologie Supérieure, Imen Benzarti Software and Information Technology Engineering Department, École de Technologie Supérieure, Ikram Darif University of Ottawa, Hafedh Mili Université du Québec à Montréal | ||
16:30 10mShort-paper | When Code Meets Things: The FLOSS Side of IoT Systems SERP4IoT Igor Pereira Federal University of Ouro Preto, Tiago Carneiro University Federal of Ouro Preto, Eduardo Figueiredo Federal University of Minas Gerais | ||
16:40 20mFull-paper | Towards moving target defense for IoT malware detection SERP4IoT Ita Ryan University College Cork, Luke Kurlandski Rochester Institute of Technology, Nate Mathews Rochester Institute of Technology | ||
17:00 20mFull-paper | Reverse Engineering and Control-Aware Security Analysis of the ArduPilot UAV Framework SERP4IoT Yasaswini Konapalli University of North Texas, Lotfi Ben Othmane University of North Texas, Cihan Tunc University of North Texas, USA, Feras Benchellal University of North Texas, Likhita Mudagere Shivaraj University of North Texas Media Attached | ||
17:20 10mShort-paper | A Visual Block Programming Environment for Home Assistant: A Progress Report SERP4IoT Mi-Hyeon Seo Chonnam National University, Hyeon-Ah Moon Chonnam National University, Kwanghoon Choi Chonnam National University, Seungchan Park IGLOO Corp., Byeong-Mo Chang Media Attached | ||