Bayesian Game Theoretic Model for Evasive AI Malware Detection in IoT

Jun-Won Ho;

doi:10.7236/IJASC.2024.13.3.41

International journal of advanced smart convergence

Volume 13 Issue 3
/
Pages.41-47
/
2024
/
2288-2847(pISSN)
/
2288-2855(eISSN)

The Institute of Internet, Broadcasting and Communication (한국인터넷방송통신학회)

DOI QR Code

Bayesian Game Theoretic Model for Evasive AI Malware Detection in IoT

Jun-Won Ho (Division of Information Security, Seoul Women's University)

Received : 2024.07.06
Accepted : 2024.07.18
Published : 2024.09.30

https://doi.org/10.7236/IJASC.2024.13.3.41 Citation PDF

Download PDF

⟨ Previous Next ⟩

Abstract

In this paper, we deal with a game theoretic problem to explore interactions between evasive Artificial Intelligence (AI) malware and detectors in Internet of Things (IoT). Evasive AI malware is defined as malware having capability of eluding detection by exploiting artificial intelligence such as machine learning and deep leaning. Detectors are defined as IoT devices participating in detection of evasive AI malware in IoT. They can be separated into two groups such that one group of detectors can be armed with detection capability powered by AI, the other group cannot be armed with it. Evasive AI malware can take three strategies of Non-attack, Non-AI attack, AI attack. To cope with these strategies of evasive AI malware, detector can adopt three strategies of Non-defense, Non-AI defense, AI defense. We formulate a Bayesian game theoretic model with these strategies employed by evasive AI malware and detector. We derive pure strategy Bayesian Nash Equilibria in a single stage game from the formulated Bayesian game theoretic model. Our devised work is useful in the sense that it can be used as a basic game theoretic model for developing AI malware detection schemes.

Keywords

Acknowledgement

This work was supported by a research grant from Seoul Women's University (2024-0008).

References

W. Diao, X. Liu, Z. Li, and K. Zhang. Evading Android Runtime Analysis Through Detecting Programmed Interactions. In ACM WiSec, 2016. DOI: https://doi.org/10.1145/2939918.2939926
Jun-Won Ho . Game Theoretic Approach Toward Detection of Input-Driven Evasive Malware in the IoT. TechRxiv. September 29, 2022. DOI: https://doi.org/10.36227/techrxiv.19633677.v2
D. Kirat, G. Vigna, C. Kruegel. BareCloud: Bare-metal Analysis-based Evasive Malware Detection. In Usenix Security, 2014.
N. Miramirkhani, M. P. Appini, N. Nikiforakis, and M. Polychronakis. Spotless Sandboxes: Evading Malware Analysis Systems using Wear-and-Tear Artifacts. In IEEE Symposium on Security and Privacy (SP), 2017. DOI: https://doi.org/10.1109/SP.2017.42
J. Wampler, I. Martiny, and E. Wustrow. ExSpectre: Hiding Malware in Speculative Execution. In Network and Distributed Systems Security (NDSS) Symposium, 2019. DOI:https://doi.org/10.14722/ndss.2019.23409