Are Your Training Datasets Yet Relevant? - An Investigation into the Importance of Timeline in Machine Learning-Based Malware Detection

Allix, Kevin; Bissyande, Tegawendé François D Assise; Klein, Jacques; Le Traon, Yves

doi:10.1007/978-3-319-15618-7_5

Reference : Are Your Training Datasets Yet Relevant? - An Investigation into the Importance of Ti...


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	To cite this reference:	http://hdl.handle.net/10993/20299

Title :	Are Your Training Datasets Yet Relevant? - An Investigation into the Importance of Timeline in Machine Learning-Based Malware Detection
Language :	English
Author, co-author :	Allix, Kevin [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) > ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Bissyande, Tegawendé François D Assise [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Klein, Jacques [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) > ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Le Traon, Yves [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) > ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Publication date :	2015
Main document title :	Engineering Secure Software and Systems - 7th International Symposium ESSoS 2015, Milan, Italy, March 4-6, 2015. Proceedings
Publisher :	Springer International Publishing
Pages :	51-67
Peer reviewed :	Yes
ISBN :	978-3-319-15617-0
Event name :	7th International Symposium on Engineering Secure Software and Systems, ESSoS'15
Event date :	from 04-03-2015 to 06-03-2015
Event place (city) :	Milano
Event country :	Italy
Keywords :	[en] Machine Learning ; Malware Detection ; Time ; Android
Abstract :	[en] In this paper, we consider the relevance of timeline in the construction of datasets, to highlight its impact on the performance of a machine learning-based malware detection scheme. Typically, we show that simply picking a random set of known malware to train a malware detector, as it is done in many assessment scenarios from the literature, yields significantly biased results. In the process of assessing the extent of this impact through various experiments, we were also able to con- firm a number of intuitive assumptions about Android malware. For instance, we discuss the existence of Android malware lineages and how they could impact the performance of malware detection in the wild.
Research centres :	University of Luxembourg: High Performance Computing - ULHPC
Permalink :	http://hdl.handle.net/10993/20299
DOI :	10.1007/978-3-319-15618-7_5
Other URL :	http://dx.doi.org/10.1007/978-3-319-15618-7_5

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Open access	essos15_preprint.pdf		Author preprint	626.85 kB	View/Open

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices