ADAPT: A Pseudo-labeling Approach to Combat Concept Drift in Malware Detection
By: Md Tanvirul Alam, Aritran Piplai, Nidhi Rastogi
Potential Business Impact:
Finds new computer viruses faster and cheaper.
Machine learning models are commonly used for malware classification; however, they suffer from performance degradation over time due to concept drift. Adapting these models to changing data distributions requires frequent updates, which rely on costly ground truth annotations. While active learning can reduce the annotation burden, leveraging unlabeled data through semi-supervised learning remains a relatively underexplored approach in the context of malware detection. In this research, we introduce \texttt{ADAPT}, a novel pseudo-labeling semi-supervised algorithm for addressing concept drift. Our model-agnostic method can be applied to various machine learning models, including neural networks and tree-based algorithms. We conduct extensive experiments on five diverse malware detection datasets spanning Android, Windows, and PDF domains. The results demonstrate that our method consistently outperforms baseline models and competitive benchmarks. This work paves the way for more effective adaptation of machine learning models to concept drift in malware detection.
Similar Papers
LFreeDA: Label-Free Drift Adaptation for Windows Malware Detection
Cryptography and Security
Teaches computers to spot new computer viruses automatically.
Generative Active Adaptation for Drifting and Imbalanced Network Intrusion Detection
Networking and Internet Architecture
Finds hidden computer attacks with less work.
Flexible and Efficient Drift Detection without Labels
Machine Learning (Stat)
Finds when computer predictions stop being right.