{"id":"https://openalex.org/W7155912279","doi":"https://doi.org/10.48550/arxiv.2604.22569","title":"Adversarial Co-Evolution of Malware and Detection Models: A Bilevel Optimization Perspective","display_name":"Adversarial Co-Evolution of Malware and Detection Models: A Bilevel Optimization Perspective","publication_year":2026,"publication_date":"2026-04-24","ids":{"openalex":"https://openalex.org/W7155912279","doi":"https://doi.org/10.48550/arxiv.2604.22569"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2604.22569","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.22569","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2604.22569","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5134744640","display_name":"Olha Jure\u010dkov\u00e1","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jure\u010dkov\u00e1, Olha","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033203359","display_name":"Martin Jure\u010dek","orcid":"https://orcid.org/0000-0002-6546-8953"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jure\u010dek, Martin","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037604415","display_name":"Matou\u0161 Koz\u00e1k","orcid":"https://orcid.org/0000-0001-8329-7572"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Koz\u00e1k, Matou\u0161","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5071351394","display_name":"R\u00f3bert L\u00f3rencz","orcid":"https://orcid.org/0000-0001-5444-8511"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"L\u00f3rencz, R\u00f3bert","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.8766999840736389,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.8766999840736389,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.09149999916553497,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.011900000274181366,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.8715000152587891},{"id":"https://openalex.org/keywords/evasion","display_name":"Evasion (ethics)","score":0.8065000176429749},{"id":"https://openalex.org/keywords/bilevel-optimization","display_name":"Bilevel optimization","score":0.7656000256538391},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.5236999988555908},{"id":"https://openalex.org/keywords/perspective","display_name":"Perspective (graphical)","score":0.5037000179290771},{"id":"https://openalex.org/keywords/obfuscation","display_name":"Obfuscation","score":0.35010001063346863},{"id":"https://openalex.org/keywords/optimization-problem","display_name":"Optimization problem","score":0.33320000767707825}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.8715000152587891},{"id":"https://openalex.org/C2781251061","wikidata":"https://www.wikidata.org/wiki/Q5416089","display_name":"Evasion (ethics)","level":3,"score":0.8065000176429749},{"id":"https://openalex.org/C3309286","wikidata":"https://www.wikidata.org/wiki/Q4907693","display_name":"Bilevel optimization","level":3,"score":0.7656000256538391},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7171000242233276},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.5236999988555908},{"id":"https://openalex.org/C12713177","wikidata":"https://www.wikidata.org/wiki/Q1900281","display_name":"Perspective (graphical)","level":2,"score":0.5037000179290771},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4268999993801117},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3991999924182892},{"id":"https://openalex.org/C40305131","wikidata":"https://www.wikidata.org/wiki/Q2616305","display_name":"Obfuscation","level":2,"score":0.35010001063346863},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3375999927520752},{"id":"https://openalex.org/C137836250","wikidata":"https://www.wikidata.org/wiki/Q984063","display_name":"Optimization problem","level":2,"score":0.33320000767707825},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.3260999917984009},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.3000999987125397},{"id":"https://openalex.org/C97541855","wikidata":"https://www.wikidata.org/wiki/Q830687","display_name":"Reinforcement learning","level":2,"score":0.29089999198913574},{"id":"https://openalex.org/C149672232","wikidata":"https://www.wikidata.org/wiki/Q337048","display_name":"Adaptive optimization","level":2,"score":0.2782000005245209},{"id":"https://openalex.org/C65856478","wikidata":"https://www.wikidata.org/wiki/Q3991682","display_name":"Attack model","level":2,"score":0.2696000039577484},{"id":"https://openalex.org/C2780801425","wikidata":"https://www.wikidata.org/wiki/Q5164392","display_name":"Construct (python library)","level":2,"score":0.267300009727478},{"id":"https://openalex.org/C12725497","wikidata":"https://www.wikidata.org/wiki/Q810247","display_name":"Baseline (sea)","level":2,"score":0.26089999079704285},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.2531000077724457}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2604.22569","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.22569","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2604.22569","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.22569","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Machine":[0],"learning-based":[1],"malware":[2,67,157],"detectors":[3],"are":[4],"increasingly":[5],"vulnerable":[6],"to":[7,26,108,132],"adversarial":[8,15,53,83,164],"examples.":[9],"Traditional":[10],"defenses,":[11],"such":[12],"as":[13,51,91,93],"one-shot":[14],"training,":[16],"often":[17,85],"fail":[18],"against":[19,64],"adaptive":[20],"attackers":[21],"who":[22],"use":[23],"reinforcement":[24],"learning":[25],"bypass":[27],"detection.":[28],"This":[29],"paper":[30],"proposes":[31],"a":[32,46],"robust":[33],"defense":[34,148],"framework":[35,63,116],"based":[36],"on":[37],"bilevel":[38,98,150],"optimization,":[39],"explicitly":[40],"modeling":[41,141],"the":[42,61,96,114,119,124,142],"strategic":[43],"interaction":[44],"between":[45],"defender":[47],"and":[48,71,81,147],"an":[49,52],"attacker":[50],"co-evolutionary":[54],"process.":[55],"We":[56],"evaluate":[57],"our":[58],"approach":[59,100],"using":[60],"MAB-malware":[62],"three":[65],"distinct":[66],"families:":[68],"Mokes,":[69],"Strab,":[70],"DCRat.":[72],"Our":[73],"experimental":[74],"results":[75],"demonstrate":[76],"that":[77,140],"while":[78],"standard":[79],"classifiers":[80],"basic":[82],"retraining":[84],"remain":[86],"vulnerable,":[87],"showing":[88],"evasion":[89,106,129],"rates":[90,107],"high":[92],"90":[94],"%,":[95],"proposed":[97],"optimization":[99,151],"consistently":[101],"achieves":[102],"near-total":[103],"immunity,":[104],"reducing":[105],"0":[109],"-":[110],"1.89":[111],"%.":[112],"Furthermore,":[113],"iterative":[115,143],"significantly":[117],"increases":[118],"attacker's":[120],"query":[121],"complexity,":[122],"raising":[123],"average":[125],"cost":[126],"of":[127,135,145,161],"successful":[128],"by":[130],"up":[131],"two":[133],"orders":[134],"magnitude.":[136],"These":[137],"findings":[138],"suggest":[139],"cycle":[144],"attack":[146],"through":[149],"is":[152],"essential":[153],"for":[154],"developing":[155],"resilient":[156],"detection":[158],"systems":[159],"capable":[160],"withstanding":[162],"evolving":[163],"threats.":[165]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-04-28T00:00:00"}