Upload File

machine learning - triangleinfosecon.com...• if a given machine can interpret the data, learn from...

  • Home
  • Documents
  • MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning
28
MACHINE LEARNING FUTURE OF CYBERSECURITY? KARISHMA MEHTA [email protected]

Upload: others

Post on 03-Jul-2020

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

MACHINE LEARNING FUTURE OF CYBERSECURITY?

KARISHMA MEHTA

[email protected]

Page 2: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity Attack Landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 3: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 4: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

INDUSTRY HOOPLA

High accuracy- no noise

No update ever needed

No endpoint protected by our products has ever

been breached

Machine Learning and AI – same results as SME

29x better productivity

Automatically detects and

classifies

Page 5: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity Attack Landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 6: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ML VISIONARIES

“The development of full artificial intelligence could spell the end of the human race.” Hawking

Artificial intelligence could be the “most likely” cause of a third world war. Musk

the nation that leads in AI ‘will be the ruler of the world’ Putin

“We are at the beginning of the goldern age of Ai” Bezos

Page 7: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity Attack Landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 8: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ARTIFICIAL INTELLIGENCE Artificial intelligence

• If a given machine can

interpret the data, learn from it,

and use that knowledge to

adapt and achieve specific goals

Machine Learning

• If a machine can learn

without being explicitly programmed

Page 9: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ML FURTHER DEFINED

The process by which a computer can improve its own performance by continuously incorporating new data into an existing statistical model (Merriam-Webster)

The hope is that ML can help us with better prediction, classification, prioritization

Page 10: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ML (CONT…)

Page 11: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

SUPERVISED LEARNING

Page 12: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

UNSUPERVISED LEARNING

Page 13: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

MACHINE LEARNING GENERAL ALGORITHMS

Page 14: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ALGORITHMS (CONT…)

https://medium.com/machine-learning-in-practice/cheat-sheet-of-machine-learning-and-python-and-math-cheat-sheets-a4afe4e791b6

https://medium.com/machine-learning-in-practice/cheat-sheet-of-machine-learning-and-python-and-math-cheat-sheets-a4afe4e791b6
Page 15: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity Attack Landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 16: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

DOMO : DATA NEVER SLEEPS

Page 17: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

CYBERSECURITY ATTACK LANDSCAPE

• Prior actions

• Occurred actions

• Potential actions

• Detection Mitigation

• Relevant threat

actors

• Intent

• Capabilities

• Tactics,

techniques

and procedures (TTP)

• Vulnerable

• Misconfigurations

• Weaknesses

Page 18: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

DATA MINING

Classification Estimation Prediction

Clustering Visualization

Page 19: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

CYBER KILL CHAIN

Page 20: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity Attack Landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 21: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ML USE CASES IN CYBERSECURITYNetwork Threat Identification

DLP Antivirus/Malware detection

Email/Chatbot

User Behavior Modeling

ShiledX-identifying which security policies are applicable for each application

Bay Dynamics and Symantec

Smart Antivirus : AI to predict, detect and respond to cybersecurity threats

KnowmailAgariinbenta

Darktrace

Versive - use anomaly detection to identify network security threats

Harvest.AIMacieMcAfee, Sophos, Symantec, Trend Micro, Webroot, MobileIron and Zimperium

https://shop.cylance.com/us?utm_medium=referral&utm_source=cylance.com
https://www.esentire.com/
Page 22: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

MALWARE DETECTION TAXONOMY

Page 23: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

EMAIL SPAM SAMPLE WORKFLOW

Page 24: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

THREAT INTELLIGENCE MODEL

https://littlefield.co/cyber-threat-intelligence-applying-machine-learning-data-mining-and-text-feature-extraction-to-bb00c3b729bc

https://littlefield.co/cyber-threat-intelligence-applying-machine-learning-data-mining-and-text-feature-extraction-to-bb00c3b729bc
Page 25: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 26: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

ML SHORTCOMINGS IN CYBERSECURITY

• No standard framework

• Not enough rich data

• Not enough experts per domain

• No standard features set

• Not enough computational power/memory to process ton of data

• Not enough training time

• Not enough customization on blocks & algorithms

Page 27: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

AGENDA

• Industry Hoopla

• Machine Learning (ML) Visionaries

• What’s Machine Learning?

• Supervised Learning

• Unsupervised Learning

• Cybersecurity landscape

• Possible use cases

• ML Shortcomings

• Conclusion

Page 28: MACHINE LEARNING - triangleinfosecon.com...• If a given machine can interpret the data, learn from it, and use that knowledge to adapt and achieve specific goals Machine Learning

CONCLUSION

Models does not learn on its own

Models does not give us 99% accuracy

Once model is trained, we need to keep retraining with changing situation

Need continuous learning and shifting

Still not at the level of production


¿Qué es Machine Learning? Usos de Machine Learning

Machine Learning: Machine Learning:

Machine Learning for NLP - Ethics and Machine Learning

USING MACHINE LEARNING TO DESIGN AND INTERPRET GENE ...elser/ai_papers/Using Machine Learning to Design... · processes, molecular biologists have, for decades, taken advantage of

Machine Learning: Machine Learning: Introduction Introduction

Insight into literature : learning to interpret inside

Fast Track Machine Learning Part 1 (Machine Learning Overview) - Types of Machine Learning Problems

USING MACHINE LEARNING TO DESIGN AND INTERPRET …ftp.cs.wisc.edu/machine-learning/shavlik-group/molla.aimag04.pdf · Prior to the experiment, one labels the probes using a fluorescent

1. Introduction to Machine - lis-lab.fr › bernard.espinasse › ... · § 1. Introduction to Machine Learning § Machine Learning Problem § Machine Learning: Supervised & Unsupervised

Learning to Interpret Natural Language Navigation Instructions from Observation

Machine Learning Introduction Machine learningbejar/ia/transpas/teoria.mti/6-AP-aprendizaj… · Machine Learning Introduction Types of machine learning Inductive Learning: Models

Machine Learning Chapter 11. 2 Machine Learning What is learning?

Bayesian Methods for Machine Learning - Machine Learning (Theory)

Learning How To Interpret Scripture Through Context

Learning to Interpret Natural Language Commands through

Learning to interpret topographic maps: Understanding

Machine Learning - apiacoa.orgapiacoa.org/publications/teaching/machine-learning/machine... · Machine Learning Fabrice Rossi ... I chess program ... Machine programming I climbing

Dissecting the tumor-immune landscape in chimeric antigen ... · machine learning methods, such as probabilistic graphical models and deep learning, to interpret the data and identify

MathWorks - Introducing Machine Learning · 4 ntroducing Machine Learning How Machine Learning Works Machine learning uses two types of techniques: supervised learning, which trains

Machine Learning in Logistics: Machine Learning Algorithmsltu.diva-portal.org/smash/get/diva2:1118764/FULLTEXT02.pdf · Machine Learning in Logistics: Machine Learning ... Machine

11 Machine Learning Important Issues in Machine Learning

An Introduction to Machine Learning - GitHub Pages · Introduction Machine learning The machine learning process What’s machine learning History Supervised learning Non-supervised

TurnOnCCMath.net: Learning Trajectories to Interpret the

Introducing Machine Learning · 4 ntroducing Machine Learning How Machine Learning Works Machine learning uses two types of techniques: supervised learning, which trains a model on

Machine Learning using MapReduce - Boise State Universitycs.boisestate.edu/.../mapreduce-machine-learning-handout.pdf · 2016-10-27 · What is Machine Learning I Machine learning

Machine Learning and Azure Machine Learning

Extreme Machine Learning with GPUs - NVIDIA€¦ · Large Scale Exploitation Evaluate Interpret. Top-10 “Big Data” Algorithms 1. Regression (logistic, linear) + Naïve Bayes 2

Deep learning - Machine learning overviewce.sharif.edu/courses/98-99/1/ce719-1/resources/root/...Deep learning j What is machine learning? Types of machine learning Machine learning

Learning with large datasets Machine Learning Large scale machine learning

Using Visual Analytics to Interpret Predictive Machine ...Using Visual Analytics to Interpret Predictive Machine Learning Models Josua Krause [email protected] New York University

Assessment for learning in science: Issues in learning to interpret student work

Learning to Interpret Natural Language Instructions

Using Machine Learning Techniques to Interpret Open-ended ... · LauraWronski, SurveyMonkey AnnaBoch, Stanford University ReubenMcCreanor, SurveyMonkey Federal Committeeon Statistical

Learning to Interpret Natural Language Navigation Instructions from Observations

Introduction To Azure Machine Learning...Expected Learning Outcomes Azure Machine Learning @tetranoodle Supervised Machine Learning Machine Learning Algorithms in Azure ML Workflow