Getting Passive Aggressive About False Positives: Patching Deployed Malware Detectors
How do you fix a malware classifier that’s already in the field, without retraining from scratch and without breaking previously-correct decisions? We apply the Passive-Aggressive algorithm to incrementally patch deployed detectors against newly-discovered false positives.