FeatureSmith- Learning to Detect Malware by Mining the Security Literature - USENIX Enigma 2017
USENIX Enigma Conference via YouTube
Overview
Syllabus
Intro
Security and Machine Learning
Running Example: Android Malware Detection • How should we compare samples? - Permissions
Dilemma
Plato's Allegory of the Cave
Challenge #1
Challenge #2
Intuition for Automatic Feature Engineering
Behavior Extraction
Behavior Understanding • Link behaviors to concrete features
Semantic Network Example
How Well Does This Work?
Auto vs. Manual: Experiment
Auto vs. Manual: Features
Auto vs. Manual: Detection Performance
Knowledge Evolution
Alternatives
In A Nutshell
Taught by
USENIX Enigma Conference