Sravan Ankaraju, profile picture
Uploaded bySravan Ankaraju
PPTX, PDF209 views

Machine learning and Cybersecurity

The document discusses the role of machine learning in enhancing cybersecurity, emphasizing its ability to improve data security through proactive defense measures against malware while highlighting limitations such as false positives and detection rates. It identifies that machine learning cannot serve as a standalone protection layer but can augment existing security measures. Additionally, it emphasizes the importance of integrating multiple layers of protection to tackle sophisticated threats like advanced persistent threats and various types of cyberattacks.

Embed presentation

Download to read offline
MACHINE LEARNING AND CYBERSECURITY AUGUST 24th, 2017 Based on the work of Cristina Vatamanu @BitDefender SRAVAN ANKARAJU FOUNDER & CEO DIVERGENCE ACADEMY
Can Machine Learning Help Organizations Improve Data Security?
YES. BUT HOW SO?  Models based on Machine Learning are more robust. • Machine Learning has become more proactive defense against malware • Most threats are file-based. Machine Learning Models are designed for static analysis. ML integrated into protection layer of file scanning is a proactive solution. • In the past Signature based Threat Detection was to bypass with some minor changes • It gives bad guy’s headaches.
HOW SO? File scanning protection layer is just one layer
Are there limitations to Machine Learning?
LIMITATION #1 – TECHNOLOGY ITSELF Balance of three dimensions: Detection Rate, Number of False Positives, Performance Impact 1. NUMBER OF FALSE POSITIVES • If you make algorithms too generic, they will be prone to False Positives • IF you restrict them, they will cause False Negatives 2. DETECTION RATE • Tuning becomes important • This technology has to be backed up by other technologies such as Whitelisting or other detection methods 3. PERFORMANCE IMPACT • If you have to be proactive, then you have to use complex models • Complex models will have lead for performance impact
LIMITATION #2 – TYPE OF ATTACKS THAT A PROTECION LAYER CAN HANDLE • Some bypass the protection layer of file scanning • You need models for example that scan memory pages, ones that can intercept the vulnerabilities that are being exploited
What about Machine Learning in Advanced Persistent Threats?
USE OF ML IN APT • Advanced Persistent Threats are more discrete • Guy’s in such an attack have more knowledge about their victims • Know what security solution is in the enterprise’s network • They will never send a file that can be detected by security solution • If a security solution has multiple layers of protection, ex. One based on Dynamic Behavior, Correlating Events from Company’s network
Is Machine Learning the CURE for all security issues?
PURPOSE OF MACHINE LEARNING • Machine Learning is a Detection Tool • Machine Learning cannot be a protection layer by itself • Machine Learning can augment the value of protection layer
CRITERIA TO EVALUATE SECURITY SOLUTIONS 1. What are the protection layers? 2. Are there Spam Filters, and Anti- Phishing Filters? 3. Is there a Protection layer designed for File Scanning or Memory Page Scanning? 4. Are there techniques in the solution built on Dynamic Behaviors, and Network Anomalies? 5. Is Machine Learning being used in any of the layers?  All of these have to work together to protect against different types of threats
ATTACKS ARE GETTING MORE SOPHISTICATED • Distributed Denial of Service (DDoS) • Ransomware Attacks • Insiders • Somebody pretending to be insiders • BYOD leads you to new challenges • Outsource Tier-1 and Tier-2 Engagements?? • Information Assurance
DIVERGENCE ACADEMY PARTNERED WITH
DIVERGENCE ACADEMY PARTNERED WITH
DIVERGENCE ACADEMY PARTNERED WITH
DIVERGENCE ACADEMY PARTNERED WITH
SORTING A KICK OFF SORTING B STARTS 40 HOURS A WEEK EXTENDED A+B TOGETHER ALL THE WAY UNTIL THE END OF A A FINISHED, B CONTINUES UNTIL THE END 09/25/17 10/30/17 11/06/17 01/24/17
FUNDING OPTIONS • Skills.fund - https://divergence.skills.fund. 36 or 60 month loans. Living Expenses of $1500/month for three months also available for out-of-state students. • Workforce Innovation Opportunity Act (WIOA) funds • Divergence Academy Tuition Installment (TADS) - 9 month installment – 50% in the first 4 months, rest in 5 months.
JOIN TODAY TO BE THE NEXT CYBER PROFESSIONAL

More Related Content

PPTX
NTXISSACSC2 - Next-Generation Security and the Problem of Exploitation by Mat...
byNorth Texas Chapter of the ISSA
 
PPTX
NTXISSACSC2 - Threat Modeling Part 3 - DREAD by Brad Andrews
byNorth Texas Chapter of the ISSA
 
PDF
Cyber Security vs.pdf
byMing Man Chan
 
PPTX
NTXISSACSC2 - Threat Modeling Part 2 - STRIDE by Brad Andrews
byNorth Texas Chapter of the ISSA
 
DOC
Computer Security Policy
byeverestsky66
 
PDF
Raising information security awareness
byTerranovatraining
 
PDF
Acronis Active Protection: A Way To Combat Ransomware Attack
byAcronis
 
PDF
Five things I learned about information security
byMajor Hayden
 
NTXISSACSC2 - Next-Generation Security and the Problem of Exploitation by Mat...
byNorth Texas Chapter of the ISSA
 
NTXISSACSC2 - Threat Modeling Part 3 - DREAD by Brad Andrews
byNorth Texas Chapter of the ISSA
 
Cyber Security vs.pdf
byMing Man Chan
 
NTXISSACSC2 - Threat Modeling Part 2 - STRIDE by Brad Andrews
byNorth Texas Chapter of the ISSA
 
Computer Security Policy
byeverestsky66
 
Raising information security awareness
byTerranovatraining
 
Acronis Active Protection: A Way To Combat Ransomware Attack
byAcronis
 
Five things I learned about information security
byMajor Hayden
 

What's hot

PPTX
Basic Security Training for End Users
byCommunity IT Innovators
 
PDF
Information Security Awareness
byNet at Work
 
PPSX
The myth of secure computing; management information system; MIS
bySaazan Shrestha
 
PPT
Information Security Awareness And Training Business Case For Web Based Solut...
byMichael Kaishar, MSIA | CISSP
 
PPTX
information security awareness course
byAbdul Manaf Vellakodath
 
PPTX
Vulnerability management today and tomorrow
byJonathan Sinclair
 
PPTX
Network Security: Attacks, Tools and Techniques
bywaqasahmad1995
 
PDF
Network Security Fundamentals
byFat-Thing Gabriel-Culley
 
PPT
Computer Security Policy D
byguest34b014
 
PPTX
Vulnerability Assessment
byprimeteacher32
 
PDF
Cyber security from military point of view
byS.E. CTS CERT-GOV-MD
 
PPT
Introduction Network security
byIGZ Software house
 
PDF
How Computer Network Support System Work Against Hacking?
byjeremyhall724
 
DOCX
Self defending networks
byRavi Kumar Pawanism
 
PDF
Network Security Fundamentals
byRahmat Suhatman
 
PPTX
Self Defending Network
bySwarna Gautam
 
PPT
Employee Security Awareness Program
byCommLab India – Rapid eLearning Solutions
 
PDF
Information Security Awareness Training
byRandy Bowman
 
PPTX
Network Security Risk
byDedi Dwianto
 
PPT
Blue Ocean IT Security
byJonathan Sinclair
 
Basic Security Training for End Users
byCommunity IT Innovators
 
Information Security Awareness
byNet at Work
 
The myth of secure computing; management information system; MIS
bySaazan Shrestha
 
Information Security Awareness And Training Business Case For Web Based Solut...
byMichael Kaishar, MSIA | CISSP
 
information security awareness course
byAbdul Manaf Vellakodath
 
Vulnerability management today and tomorrow
byJonathan Sinclair
 
Network Security: Attacks, Tools and Techniques
bywaqasahmad1995
 
Network Security Fundamentals
byFat-Thing Gabriel-Culley
 
Computer Security Policy D
byguest34b014
 
Vulnerability Assessment
byprimeteacher32
 
Cyber security from military point of view
byS.E. CTS CERT-GOV-MD
 
Introduction Network security
byIGZ Software house
 
How Computer Network Support System Work Against Hacking?
byjeremyhall724
 
Self defending networks
byRavi Kumar Pawanism
 
Network Security Fundamentals
byRahmat Suhatman
 
Self Defending Network
bySwarna Gautam
 
Employee Security Awareness Program
byCommLab India – Rapid eLearning Solutions
 
Information Security Awareness Training
byRandy Bowman
 
Network Security Risk
byDedi Dwianto
 
Blue Ocean IT Security
byJonathan Sinclair
 

Similar to Machine learning and Cybersecurity

PPTX
Machine Learning: Addressing the Disillusionment to Bring Actual Business Ben...
byJon Mead
 
PDF
Security Automation and Machine Learning
bySiemplify
 
PPTX
BsidesLVPresso2016_JZeditsv6
byRod Soto
 
PPTX
34CEF196-RoleofMachineLearninginCybersecurity.pptx
bymsubhasreerajarnd
 
PPTX
The Role of Machine Learning in Cybersecurity.pptx
byChristine Shepherd
 
PPTX
Leveraging Machine Learning to Enhance Cybersecurity v2.pptx
byBahaa Farouk
 
PDF
AI & ML in Cyber Security - Why Algorithms are Dangerous
byPriyanka Aash
 
PDF
AI & ML in Cyber Security - Why Algorithms are Dangerous
byRaffael Marty
 
PDF
Harnessing the Power of Machine Learning in Cybersecurity.pdf
byCIOWomenMagazine
 
PPTX
Machine Learning in Cyber Security
byRishi Kant
 
PPTX
AI and ML in Cybersecurity
byForcepoint LLC
 
PDF
influence of AI in IS
byISACA Riyadh
 
PPTX
M01-L02 - Introduction to Machine Learning for Cybersecurity.pptx
byMinhaoCheng2
 
PPTX
An overview of cyber security data science from a perspective of machine lear...
byPhD Assistance
 
PPTX
Enhance Security Domain with Machine Learning
byMuhammad Dzikri Ramdhani
 
PDF
AI & ML in Cyber Security - Why Algorithms Are Dangerous
byRaffael Marty
 
PDF
Machine learning cybersecurity boon or boondoggle
byPriyanka Aash
 
PPTX
Secure Machine Learning: Overcoming Algorithmic Bias, Adversarial ML, and Oth...
byHunter Carlisle
 
PPTX
Data Science in Cybersecurity effectiveness
bycherryblossomm567
 
PDF
An overview of cyber security data science from a perspective of machine lear...
byPhD Assistance
 
Machine Learning: Addressing the Disillusionment to Bring Actual Business Ben...
byJon Mead
 
Security Automation and Machine Learning
bySiemplify
 
BsidesLVPresso2016_JZeditsv6
byRod Soto
 
34CEF196-RoleofMachineLearninginCybersecurity.pptx
bymsubhasreerajarnd
 
The Role of Machine Learning in Cybersecurity.pptx
byChristine Shepherd
 
Leveraging Machine Learning to Enhance Cybersecurity v2.pptx
byBahaa Farouk
 
AI & ML in Cyber Security - Why Algorithms are Dangerous
byPriyanka Aash
 
AI & ML in Cyber Security - Why Algorithms are Dangerous
byRaffael Marty
 
Harnessing the Power of Machine Learning in Cybersecurity.pdf
byCIOWomenMagazine
 
Machine Learning in Cyber Security
byRishi Kant
 
AI and ML in Cybersecurity
byForcepoint LLC
 
influence of AI in IS
byISACA Riyadh
 
M01-L02 - Introduction to Machine Learning for Cybersecurity.pptx
byMinhaoCheng2
 
An overview of cyber security data science from a perspective of machine lear...
byPhD Assistance
 
Enhance Security Domain with Machine Learning
byMuhammad Dzikri Ramdhani
 
AI & ML in Cyber Security - Why Algorithms Are Dangerous
byRaffael Marty
 
Machine learning cybersecurity boon or boondoggle
byPriyanka Aash
 
Secure Machine Learning: Overcoming Algorithmic Bias, Adversarial ML, and Oth...
byHunter Carlisle
 
Data Science in Cybersecurity effectiveness
bycherryblossomm567
 
An overview of cyber security data science from a perspective of machine lear...
byPhD Assistance
 

Recently uploaded

PDF
PathRAG rag pipeline PathRAG rag pipeline .pdf
byhotslix023
 
PDF
Trustworthy AI : Governance of AI through Ethics
byKarim Baïna
 
DOCX
Data Analyst Training Course | Advanced Data Analytics Certification | GVT Ac...
byGVT Academy
 
PDF
chapter one introduction to Probability theory.pdf
bySeid42
 
PPT
data collection tool ppt.ppttttdataadfttg
byMuhammadodil
 
PPTX
Social Media Audit of Starbucks Coffee Company.pptx
bydiviap21
 
PDF
LECTURE - Overcoming the AI Failure Rate - AIG, DQM.pdf
bySami Laine
 
PDF
US Digital Fan Engagement Index 2026: Benchmarking Online Demand for Sports T...
byHyperset Group Ltd
 
PPTX
I need all your support to get the data for the sections like photo gallery o...
byhsharsha1
 
PPTX
GENPHYSICS-2.pptx this about general physics. Grade 11 lesson
byGwynMorata
 
PDF
Khan Traders Fish Meal – MSDS Material Safety Data Sheet
byKhan Traders Karachi
 
PPTX
inbound4709748695955476507 Deformable bodies.pptx
byaltheabautistam
 
PDF
Columbus Data and Analytics Wednesday - People Analytics 101: Making Sense of...
byTim Wilson
 
PPTX
End to End Supply Chain Management- Analytics Case Study.
byNandhuNandha1
 
PPTX
250106204341-c238c4fadonebeforelastyear.pptx
byAbduRouf3
 
PPTX
Lecture 14- Introduction to Hypothesis Testing.pptx
bygbadamosiayomide
 
PDF
Understanding Data Analytics: Concepts, Types, and Use Cases
byThe IoT Academy
 
PPTX
Top Institute for Data Analyst Course in Navi Mumbai
byPatil sagar
 
PDF
Analysis of Union Budget 2026-27: Major Announcements and their Impact
byDeeshiPavecha
 
PDF
Machine_Psychology_2050_Strategic_Scenarios.pdf
byKambs Consulting
 
PathRAG rag pipeline PathRAG rag pipeline .pdf
byhotslix023
 
Trustworthy AI : Governance of AI through Ethics
byKarim Baïna
 
Data Analyst Training Course | Advanced Data Analytics Certification | GVT Ac...
byGVT Academy
 
chapter one introduction to Probability theory.pdf
bySeid42
 
data collection tool ppt.ppttttdataadfttg
byMuhammadodil
 
Social Media Audit of Starbucks Coffee Company.pptx
bydiviap21
 
LECTURE - Overcoming the AI Failure Rate - AIG, DQM.pdf
bySami Laine
 
US Digital Fan Engagement Index 2026: Benchmarking Online Demand for Sports T...
byHyperset Group Ltd
 
I need all your support to get the data for the sections like photo gallery o...
byhsharsha1
 
GENPHYSICS-2.pptx this about general physics. Grade 11 lesson
byGwynMorata
 
Khan Traders Fish Meal – MSDS Material Safety Data Sheet
byKhan Traders Karachi
 
inbound4709748695955476507 Deformable bodies.pptx
byaltheabautistam
 
Columbus Data and Analytics Wednesday - People Analytics 101: Making Sense of...
byTim Wilson
 
End to End Supply Chain Management- Analytics Case Study.
byNandhuNandha1
 
250106204341-c238c4fadonebeforelastyear.pptx
byAbduRouf3
 
Lecture 14- Introduction to Hypothesis Testing.pptx
bygbadamosiayomide
 
Understanding Data Analytics: Concepts, Types, and Use Cases
byThe IoT Academy
 
Top Institute for Data Analyst Course in Navi Mumbai
byPatil sagar
 
Analysis of Union Budget 2026-27: Major Announcements and their Impact
byDeeshiPavecha
 
Machine_Psychology_2050_Strategic_Scenarios.pdf
byKambs Consulting
 

Machine learning and Cybersecurity

  • 1.
    MACHINE LEARNING AND CYBERSECURITY AUGUST 24th,2017 Based on the work of Cristina Vatamanu @BitDefender SRAVAN ANKARAJU FOUNDER & CEO DIVERGENCE ACADEMY
  • 3.
    Can Machine LearningHelp Organizations Improve Data Security?
  • 4.
    YES. BUT HOWSO?  Models based on Machine Learning are more robust. • Machine Learning has become more proactive defense against malware • Most threats are file-based. Machine Learning Models are designed for static analysis. ML integrated into protection layer of file scanning is a proactive solution. • In the past Signature based Threat Detection was to bypass with some minor changes • It gives bad guy’s headaches.
  • 5.
    HOW SO? File scanningprotection layer is just one layer
  • 6.
    Are there limitationsto Machine Learning?
  • 7.
    LIMITATION #1 –TECHNOLOGY ITSELF Balance of three dimensions: Detection Rate, Number of False Positives, Performance Impact 1. NUMBER OF FALSE POSITIVES • If you make algorithms too generic, they will be prone to False Positives • IF you restrict them, they will cause False Negatives 2. DETECTION RATE • Tuning becomes important • This technology has to be backed up by other technologies such as Whitelisting or other detection methods 3. PERFORMANCE IMPACT • If you have to be proactive, then you have to use complex models • Complex models will have lead for performance impact
  • 8.
    LIMITATION #2 –TYPE OF ATTACKS THAT A PROTECION LAYER CAN HANDLE • Some bypass the protection layer of file scanning • You need models for example that scan memory pages, ones that can intercept the vulnerabilities that are being exploited
  • 9.
    What about MachineLearning in Advanced Persistent Threats?
  • 10.
    USE OF MLIN APT • Advanced Persistent Threats are more discrete • Guy’s in such an attack have more knowledge about their victims • Know what security solution is in the enterprise’s network • They will never send a file that can be detected by security solution • If a security solution has multiple layers of protection, ex. One based on Dynamic Behavior, Correlating Events from Company’s network
  • 11.
    Is Machine Learningthe CURE for all security issues?
  • 12.
    PURPOSE OF MACHINELEARNING • Machine Learning is a Detection Tool • Machine Learning cannot be a protection layer by itself • Machine Learning can augment the value of protection layer
  • 13.
    CRITERIA TO EVALUATESECURITY SOLUTIONS 1. What are the protection layers? 2. Are there Spam Filters, and Anti- Phishing Filters? 3. Is there a Protection layer designed for File Scanning or Memory Page Scanning? 4. Are there techniques in the solution built on Dynamic Behaviors, and Network Anomalies? 5. Is Machine Learning being used in any of the layers?  All of these have to work together to protect against different types of threats
  • 14.
    ATTACKS ARE GETTINGMORE SOPHISTICATED • Distributed Denial of Service (DDoS) • Ransomware Attacks • Insiders • Somebody pretending to be insiders • BYOD leads you to new challenges • Outsource Tier-1 and Tier-2 Engagements?? • Information Assurance
  • 15.
  • 16.
  • 18.
  • 19.
  • 20.
    SORTING A KICKOFF SORTING B STARTS 40 HOURS A WEEK EXTENDED A+B TOGETHER ALL THE WAY UNTIL THE END OF A A FINISHED, B CONTINUES UNTIL THE END 09/25/17 10/30/17 11/06/17 01/24/17
  • 21.
    FUNDING OPTIONS • Skills.fund- https://divergence.skills.fund. 36 or 60 month loans. Living Expenses of $1500/month for three months also available for out-of-state students. • Workforce Innovation Opportunity Act (WIOA) funds • Divergence Academy Tuition Installment (TADS) - 9 month installment – 50% in the first 4 months, rest in 5 months.
  • 22.
    JOIN TODAY TOBE THE NEXT CYBER PROFESSIONAL