AI Chat Paper
Note: Please note that the following content is generated by AMiner AI. SciOpen does not take any responsibility related to this content.
{{lang === 'zh_CN' ? '文章概述' : 'Summary'}}
{{lang === 'en_US' ? '中' : 'Eng'}}
Chat more with AI
PDF (3.4 MB)
Collect
Submit Manuscript AI Chat Paper
Show Outline
Outline
Show full outline
Hide outline
Outline
Show full outline
Hide outline
Open Access

Malware Evasion Attacks Against IoT and Other Devices: An Empirical Study

School of Computer Science and Engineering, Nanjing University of Science and Technology, Nanjing 210094, China
School of Computer Science, Nanjing University of Posts and Telecommunications, Nanjing 210023, China
Department of Computer Science, University of Colorado Colorado Springs, Colorado Springs, CO 80918, USA
Show Author Information

Abstract

The Internet of Things (IoT) has grown rapidly due to artificial intelligence driven edge computing. While enabling many new functions, edge computing devices expand the vulnerability surface and have become the target of malware attacks. Moreover, attackers have used advanced techniques to evade defenses by transforming their malware into functionality-preserving variants. We systematically analyze such evasion attacks and conduct a large-scale empirical study in this paper to evaluate their impact on security. More specifically, we focus on two forms of evasion attacks: obfuscation and adversarial attacks. To the best of our knowledge, this paper is the first to investigate and contrast the two families of evasion attacks systematically. We apply 10 obfuscation attacks and 9 adversarial attacks to 2870 malware examples. The obtained findings are as follows. (1) Commercial Off-The-Shelf (COTS) malware detectors are vulnerable to evasion attacks. (2) Adversarial attacks affect COTS malware detectors slightly more effectively than obfuscated malware examples. (3) Code similarity detection approaches can be affected by obfuscated examples and are barely affected by adversarial attacks. (4) These attacks can preserve the functionality of original malware examples.

References

【1】
【1】
 
 
Tsinghua Science and Technology
Pages 127-142

{{item.num}}

Comments on this article

Go to comment

< Back to all reports

Review Status: {{reviewData.commendedNum}} Commended , {{reviewData.revisionRequiredNum}} Revision Required , {{reviewData.notCommendedNum}} Not Commended Under Peer Review

Review Comment

Close
Close
Cite this article:
Xu Y, Li D, Li Q, et al. Malware Evasion Attacks Against IoT and Other Devices: An Empirical Study. Tsinghua Science and Technology, 2024, 29(1): 127-142. https://doi.org/10.26599/TST.2023.9010005

1742

Views

73

Downloads

17

Crossref

14

Web of Science

18

Scopus

0

CSCD

Received: 01 December 2022
Revised: 05 January 2023
Accepted: 25 January 2023
Published: 21 August 2023
© The author(s) 2024.

The articles published in this open access journal are distributed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/).