Machine learning is how Avira scales the detection and classification of malware. It is one of the powerful techniques we use to protect our technology partners and their customers from threats.Download Whitepaper
Avira applies a variety of machine learning techniques to address today’s cybersecurity challenges of scale, speed, and accuracy. We apply an ensemble of techniques: from deep learning and convolutional neural networks to supervised and unsupervised machine learning. These techniques (models) are applied for detection tasks including the detection of malware and phishing, depending on the needs of the customers and the capabilities of the underlying platform.
Avira looks beyond the capabilities of malware scanning engines and heuristics, towards the application of artificial intelligence to threat analysis. We apply it to behavioral analysis and feature extraction. We implement it in the cloud, on virtual machines and within the client desktop. It’s at the heart of our swarm intelligence network of nearly 100 million sensors.
AI cybersecurity solutions can only be as good as the data being fed into the machine learning platform, and Avira’s data is vast, rich, and complex. This is the fuel powering Avira’s machine learning engine. Avira maintains databases containing hundreds of millions of malicious files, continually updated with fresh intelligence to offer real-time protection.
Supervised and unsupervised machine learning techniques offer significant benefits in terms of accurate and fast classification of malware. They offer very low false positive rates, and very fast retraining times but they do require a large training base, extensive data expertise, and resources.
At the heart of the Avira zero-day threat detection capability lies NightVisionTM, our machine learning system. Massively powerful and cloud based, it is capable of analyzing files in over 8,000 dimensions to deliver super-fast categorization of new threats.
NightVisionTM uses an ensemble of machine learning techniques because we’ve got the experience and skills in-house to choose the right model for the right job. The result is a system that benefits from super-low false positive rates and retraining times measured in minutes. This means we attain the highest levels of accuracy and our customers remain vulnerable to new malware for the shortest possible time.
Avira employs machine learning in our anti-malware SDKs to provide the most accurate local threat assessment possible. At the same time, it helps deliver one of the smallest system footprints in the cybersecurity industry.
In the cloud, on networked or mobile devices, our MicroVisionTM and AndroidVisionTM machine learning models apply powerful analytical rules. These quickly create a risk profile for unknown files and help decide whether further analysis is needed with the Avira Protection Cloud.
Feature engineering and extraction can be done by hand, and sometimes it needs to be automated.
It develops attributes that comprise of everything from the basics, such as file section size or entropy (obfuscation), to those derived from the structure, such as anomalies created by intended or unintended modifications to files artificially created by the malware author.
Avira malware analysts are experts in applying deep learning to feature engineering and extraction to uncover the unknown unknowns. Avira makes extensive use of some of the most advanced convolutional neural networks to automate and scale feature engineering and extraction.
Avira collects vast amounts of anonymized data from its sensor networks. From our customers – consumers or business users-or from routers, firewalls and gateways, we get visibility into new and emerging malware. We collect metadata and apply machine learning to classify usage patterns and build a normalized model of use that detects anomalies. We do all of this to protect our users in the connected world.
Machine learning on the endpoint and in the cloud is one of the core technologies we use to protect people in the connected world.Learn more
At the heart of Avira's anti-malware and threat intelligence systems lies the Avira Protection Cloud.Learn more
Find out how Avira’s scan engines utilize advanced machine learning, heuristics and generics.Learn more
Understanding how to protect customer data, and build a licensing model is an important part of a technology partnership.Learn more