{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2018:QJVAIHJ6YCPXQC2LWZ7ZOTPTIS","short_pith_number":"pith:QJVAIHJ6","canonical_record":{"source":{"id":"1803.04173","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-03-12T10:27:17Z","cross_cats_sorted":[],"title_canon_sha256":"79be62f48413f5340187178fb362ba194a20563b519108189f1b5dad697ae83d","abstract_canon_sha256":"6757956bbc38f5685c40842307d26632f6e9f29036edb99bb51d270a054e0320"},"schema_version":"1.0"},"canonical_sha256":"826a041d3ec09f780b4bb67f974df34480f6cd0410f73233e1fb97096d3ac9c4","source":{"kind":"arxiv","id":"1803.04173","version":1},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1803.04173","created_at":"2026-05-18T00:21:32Z"},{"alias_kind":"arxiv_version","alias_value":"1803.04173v1","created_at":"2026-05-18T00:21:32Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1803.04173","created_at":"2026-05-18T00:21:32Z"},{"alias_kind":"pith_short_12","alias_value":"QJVAIHJ6YCPX","created_at":"2026-05-18T12:32:46Z"},{"alias_kind":"pith_short_16","alias_value":"QJVAIHJ6YCPXQC2L","created_at":"2026-05-18T12:32:46Z"},{"alias_kind":"pith_short_8","alias_value":"QJVAIHJ6","created_at":"2026-05-18T12:32:46Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2018:QJVAIHJ6YCPXQC2LWZ7ZOTPTIS","target":"record","payload":{"canonical_record":{"source":{"id":"1803.04173","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-03-12T10:27:17Z","cross_cats_sorted":[],"title_canon_sha256":"79be62f48413f5340187178fb362ba194a20563b519108189f1b5dad697ae83d","abstract_canon_sha256":"6757956bbc38f5685c40842307d26632f6e9f29036edb99bb51d270a054e0320"},"schema_version":"1.0"},"canonical_sha256":"826a041d3ec09f780b4bb67f974df34480f6cd0410f73233e1fb97096d3ac9c4","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:21:32.430380Z","signature_b64":"O2o0RLJpBS0Zr1Q2V+2fpaUbNXiIw6+h8GoNL3afEez6Img3ZKmFy9WsK87l/A2+g9fvwlIzrmDvU0LSjI+zBA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"826a041d3ec09f780b4bb67f974df34480f6cd0410f73233e1fb97096d3ac9c4","last_reissued_at":"2026-05-18T00:21:32.429886Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:21:32.429886Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1803.04173","source_version":1,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:21:32Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"lWz+LXVakaZ/JNss/5i1WGYs3fiSRoIKywhNXIbA36xKqJFeNS4tvX1InVXmlzoANhPM9wxQ7yYcVz4w0ZGZCw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-27T12:23:15.119828Z"},"content_sha256":"eec7cfc7ceec41c4d7dfb329bf68f9fb40cef1e3d8cf74f1c0a837327521f56e","schema_version":"1.0","event_id":"sha256:eec7cfc7ceec41c4d7dfb329bf68f9fb40cef1e3d8cf74f1c0a837327521f56e"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2018:QJVAIHJ6YCPXQC2LWZ7ZOTPTIS","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Adversarial Malware Binaries: Evading Deep Learning for Malware Detection in Executables","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Ambra Demontis, Battista Biggio, Bojan Kolosnjaji, Claudia Eckert, Davide Maiorca, Fabio Roli, Giorgio Giacinto","submitted_at":"2018-03-12T10:27:17Z","abstract_excerpt":"Machine-learning methods have already been exploited as useful tools for detecting malicious executable files. They leverage data retrieved from malware samples, such as header fields, instruction sequences, or even raw bytes, to learn models that discriminate between benign and malicious software. However, it has also been shown that machine learning and deep neural networks can be fooled by evasion attacks (also referred to as adversarial examples), i.e., small changes to the input data that cause misclassification at test time. In this work, we investigate the vulnerability of malware detec"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1803.04173","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:21:32Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"+LoTGA4jHrW7cO6zNPUjSaoIHVg1MQW9rggqfmj5x/LMYjaEL7bPWNy0bljm/h/QIXQIWXLtVo6hjOmPkSiPDw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-27T12:23:15.120189Z"},"content_sha256":"6b4a2487923448478c7ba3f1257bec2b9ddf2aa44cbedf4fb22966867e730c21","schema_version":"1.0","event_id":"sha256:6b4a2487923448478c7ba3f1257bec2b9ddf2aa44cbedf4fb22966867e730c21"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS/bundle.json","state_url":"https://pith.science/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-05-27T12:23:15Z","links":{"resolver":"https://pith.science/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS","bundle":"https://pith.science/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS/bundle.json","state":"https://pith.science/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS/state.json","well_known_bundle":"https://pith.science/.well-known/pith/QJVAIHJ6YCPXQC2LWZ7ZOTPTIS/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2018:QJVAIHJ6YCPXQC2LWZ7ZOTPTIS","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"6757956bbc38f5685c40842307d26632f6e9f29036edb99bb51d270a054e0320","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-03-12T10:27:17Z","title_canon_sha256":"79be62f48413f5340187178fb362ba194a20563b519108189f1b5dad697ae83d"},"schema_version":"1.0","source":{"id":"1803.04173","kind":"arxiv","version":1}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1803.04173","created_at":"2026-05-18T00:21:32Z"},{"alias_kind":"arxiv_version","alias_value":"1803.04173v1","created_at":"2026-05-18T00:21:32Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1803.04173","created_at":"2026-05-18T00:21:32Z"},{"alias_kind":"pith_short_12","alias_value":"QJVAIHJ6YCPX","created_at":"2026-05-18T12:32:46Z"},{"alias_kind":"pith_short_16","alias_value":"QJVAIHJ6YCPXQC2L","created_at":"2026-05-18T12:32:46Z"},{"alias_kind":"pith_short_8","alias_value":"QJVAIHJ6","created_at":"2026-05-18T12:32:46Z"}],"graph_snapshots":[{"event_id":"sha256:6b4a2487923448478c7ba3f1257bec2b9ddf2aa44cbedf4fb22966867e730c21","target":"graph","created_at":"2026-05-18T00:21:32Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Machine-learning methods have already been exploited as useful tools for detecting malicious executable files. They leverage data retrieved from malware samples, such as header fields, instruction sequences, or even raw bytes, to learn models that discriminate between benign and malicious software. However, it has also been shown that machine learning and deep neural networks can be fooled by evasion attacks (also referred to as adversarial examples), i.e., small changes to the input data that cause misclassification at test time. In this work, we investigate the vulnerability of malware detec","authors_text":"Ambra Demontis, Battista Biggio, Bojan Kolosnjaji, Claudia Eckert, Davide Maiorca, Fabio Roli, Giorgio Giacinto","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-03-12T10:27:17Z","title":"Adversarial Malware Binaries: Evading Deep Learning for Malware Detection in Executables"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1803.04173","kind":"arxiv","version":1},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:eec7cfc7ceec41c4d7dfb329bf68f9fb40cef1e3d8cf74f1c0a837327521f56e","target":"record","created_at":"2026-05-18T00:21:32Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"6757956bbc38f5685c40842307d26632f6e9f29036edb99bb51d270a054e0320","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2018-03-12T10:27:17Z","title_canon_sha256":"79be62f48413f5340187178fb362ba194a20563b519108189f1b5dad697ae83d"},"schema_version":"1.0","source":{"id":"1803.04173","kind":"arxiv","version":1}},"canonical_sha256":"826a041d3ec09f780b4bb67f974df34480f6cd0410f73233e1fb97096d3ac9c4","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"826a041d3ec09f780b4bb67f974df34480f6cd0410f73233e1fb97096d3ac9c4","first_computed_at":"2026-05-18T00:21:32.429886Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:21:32.429886Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"O2o0RLJpBS0Zr1Q2V+2fpaUbNXiIw6+h8GoNL3afEez6Img3ZKmFy9WsK87l/A2+g9fvwlIzrmDvU0LSjI+zBA==","signature_status":"signed_v1","signed_at":"2026-05-18T00:21:32.430380Z","signed_message":"canonical_sha256_bytes"},"source_id":"1803.04173","source_kind":"arxiv","source_version":1}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:eec7cfc7ceec41c4d7dfb329bf68f9fb40cef1e3d8cf74f1c0a837327521f56e","sha256:6b4a2487923448478c7ba3f1257bec2b9ddf2aa44cbedf4fb22966867e730c21"],"state_sha256":"24c517d760b83d601813a339b0703db6b49f8d9ae2a62aaf82bfe2468bfc12d7"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"uy+sviRWx+uSCcIEZLYj9xsAjm0LpeqRgpkAU/qgGH4yU+Da/7Xeh753d3zPgasfdEzL4zCNRPHMyY7dPyGuCQ==","signed_message":"bundle_sha256_bytes","signed_at":"2026-05-27T12:23:15.123166Z","bundle_sha256":"56ce34949ac011340dac1b8554afef6a704d5c067b8f71cab326cccdd16e0a64"}}