Successfully reported this slideshow.

Artificial Intelligence – Time Bomb or The Promised Land?

1

Share

Sep. 18, 2019
1 like 1,012 views
Upcoming SlideShare
Cyber Security Beyond 2020 – Will We Learn From Our Mistakes?
Cyber Security Beyond 2020 – Will We Learn From Our Mistakes?
Loading in …3
×
1 of 20
1 of 20

Artificial Intelligence – Time Bomb or The Promised Land?

Sep. 18, 2019
1 like 1,012 views

1

Share

Download to read offline

Internet

Companies have AI projects. Security products use AI to keep attackers out and insiders at bay. But what is this "AI" that everyone talks about? In this talk we will explore what artificial intelligence in cyber security is, where the limitations and dangers are, and in what areas we should invest more in AI. We will talk about some of the recent failures of AI in security and invite a conversation about how we verify artificially intelligent systems to understand how much trust we can place in them.
Alongside the AI conversation, we will discover that we need to make a shift in our traditional approach to cyber security. We need to augment our reactive approaches of studying adversary behaviors to understanding behaviors of users and machines to inform a risk-driven approach to security that prevents even zero day attacks.

Companies have AI projects. Security products use AI to keep attackers out and insiders at bay. But what is this "AI" that everyone talks about? In this talk we will explore what artificial intelligence in cyber security is, where the limitations and dangers are, and in what areas we should invest more in AI. We will talk about some of the recent failures of AI in security and invite a conversation about how we verify artificially intelligent systems to understand how much trust we can place in them.
Alongside the AI conversation, we will discover that we need to make a shift in our traditional approach to cyber security. We need to augment our reactive approaches of studying adversary behaviors to understanding behaviors of users and machines to inform a risk-driven approach to security that prevents even zero day attacks.

Internet

Recommended

More Related Content

Similar to Artificial Intelligence – Time Bomb or The Promised Land?

Machine learning and ai in a brave new cloud world
Ulf Mattsson
Data Science Transforming Security Operations
Priyanka Aash
SplunkLive DC April 2016 - Operationalizing Machine Learning
Tom LaGatta
Future of AI: Blockchain and Deep Learning
Melanie Swan
How to Use Artificial Intelligence to Minimize your Cybersecurity Attack Surface
SparkCognition
Are my Devices Spying on Me? Living in a World of Ubiquitous Computing
Jason Hong
Fraud Management_CAS_Presentation_Oct2016
Mark Jones
Usama silicon-slopes-summit-20190131
Usama Fayyad
Putting data science into perspective
Sravan Ankaraju
Artificial General Intelligence, Consciousness, and the Future of AI
Mitt Nowshade Kabir
Using Machine Learning to Optimize DevOps Practices
Peter Varhol
Transforming Data into Wisdom
Pietro Leo
Digital Age-Preparing Yourself
jkl0202
Big Data : Risks and Opportunities
Kenny Huang Ph.D.
Lessons Learned in Automated Decision Making / How to Delay Building Skynet
Sounil Yu
What is artificial intelligence (IA) ?
Oussama Belakhdar
Artificial intelligence Overview by Ramya Mopidevi
Ramya Mopidevi
Today's Breach Reality, The IR Imperative, And What You Can Do About It
Resilient Systems
The Myths + Realities of Machine-Learning Cybersecurity
Interset
data mining for security application
bharatsvnit

More from Raffael Marty

Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Raffael Marty
How To Drive Value with Security Data
Raffael Marty
Understanding the "Intelligence" in AI
Raffael Marty
Security Chat 5.0
Raffael Marty
AI & ML in Cyber Security - Why Algorithms are Dangerous
Raffael Marty
AI & ML in Cyber Security - Why Algorithms Are Dangerous
Raffael Marty
Delivering Security Insights with Data Analytics and Visualization
Raffael Marty
AI & ML in Cyber Security - Welcome Back to 1999 - Security Hasn't Changed
Raffael Marty
Security Insights at Scale
Raffael Marty
Creating Your Own Threat Intel Through Hunting & Visualization
Raffael Marty
Creating Your Own Threat Intel Through Hunting & Visualization
Raffael Marty
Visualization in the Age of Big Data
Raffael Marty
Big Data Visualization
Raffael Marty
The Heatmap
 - Why is Security Visualization so Hard?
Raffael Marty
Workshop: Big Data Visualization for Security
Raffael Marty
Visualization for Security
Raffael Marty
The Heatmap
 - Why is Security Visualization so Hard?
Raffael Marty
DAVIX - Data Analysis and Visualization Linux
Raffael Marty
Cloud - Security - Big Data
Raffael Marty
Cyber Security – How Visual Analytics Unlock Insight
Raffael Marty

Featured

What to Upload to SlideShare
SlideShare
Be A Great Product Leader (Amplify, Oct 2019)
Adam Nash
Trillion Dollar Coach Book (Bill Campbell)
Eric Schmidt
APIdays Paris 2019 - Innovation @ scale, APIs as Digital Factories' New Machi...
apidays
A few thoughts on work life-balance
Wim Vanderbauwhede
Is vc still a thing final
Mark Suster
The GaryVee Content Model
Gary Vaynerchuk
Mammalian Brain Chemistry Explains Everything
Loretta Breuning, PhD
Blockchain + AI + Crypto Economics Are We Creating a Code Tsunami?
Dinis Guarda
The AI Rush
Jean-Baptiste Dumont
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
10 facts about jobs in the future
Pew Research Center's Internet & American Life Project
Harry Surden - Artificial Intelligence and Law Overview
Harry Surden
Inside Google's Numbers in 2017
Rand Fishkin
Pinot: Realtime Distributed OLAP datastore
Kishore Gopalakrishna
How to Become a Thought Leader in Your Niche
Leslie Samuel
Visual Design with Data
Seth Familian
Designing Teams for Emerging Challenges
Aaron Irizarry
UX, ethnography and possibilities: for Libraries, Museums and Archives
Ned Potter
Winners and Losers - All the (Russian) President's Men
Ian Bremmer

Related Books

Free with a 14 day trial from Scribd

See all
The Impulse Economy: Understanding Mobile Shoppers and What Makes Them Buy Gary Schwartz
(4.5/5)
Free
Tubes: A Journey to the Center of the Internet Andrew Blum
(4/5)
Free
Emergence: The Connected Lives of Ants, Brains, Cities, and Software Steven Johnson
(4.5/5)
Free
World Wide Mind: The Coming Integration of Humanity, Machines, and the Internet Michael Chorost
(4/5)
Free
An Army of Davids: How Markets and Technology Empower Ordinary People to Beat Big Media, Big Government, and Other Goliaths Glenn Reynolds
(4/5)
Free
In the Plex: How Google Thinks, Works, and Shapes Our Lives Steven Levy
(4.5/5)
Free
Hamlet's BlackBerry: A Practical Philosophy for Building a Good Life in the Digital Age William Powers
(4/5)
Free
The Thank You Economy Gary Vaynerchuk
(4/5)
Free
Talking Back to Facebook: The Common Sense Guide to Raising Kids in the Digital Age James P. Steyer
(4.5/5)
Free
The Nature of the Future: Dispatches from the Socialstructed World Marina Gorbis
(4/5)
Free
Public Parts: How Sharing in the Digital Age Improves the Way We Work and Live Jeff Jarvis
(3.5/5)
Free
Socialnomics: How Social Media Transforms the Way We Live and Do Business Erik Qualman
(4/5)
Free
The End of Business As Usual: Rewire the Way You Work to Succeed in the Consumer Revolution Brian Solis
(5/5)
Free
Blog Schmog: The Truth About What Blogs Can (and Can't) Do for Your Business Robert W. Bly
(4/5)
Free
Google's PageRank and Beyond: The Science of Search Engine Rankings Amy N. Langville
(3/5)
Free
Digital Vertigo: How Today's Online Social Revolution Is Dividing, Diminishing, and Disorienting Us Andrew Keen
(3/5)
Free

Related Audiobooks

Free with a 14 day trial from Scribd

See all
Platform: Get Noticed in a Noisy World Michael Hyatt
(4.5/5)
Free
Ten Arguments for Deleting Your Social Media Accounts Right Now Jaron Lanier
(4/5)
Free
Stop Checking Your Likes: Shake Off the Need for Approval and Live an Incredible Life Susie Moore
(4/5)
Free
So You Want to Start a Podcast: Finding Your Voice, Telling Your Story, and Building a Community that Will Listen Findaway
(4.5/5)
Free
This Machine Kills Secrets: How Wikileakers, Cypherpunks, and Hacktivists Aim to Free the World's Information Andy Greenberg
(4/5)
Free
The Dark Net: Inside the Digital Underworld Jamie Bartlett
(4/5)
Free
Who Owns the Future? Jaron Lanier
(4/5)
Free
Kill All Normies: Online Culture Wars From 4Chan And Tumblr To Trump And The Alt-Right Angela Nagle
(4/5)
Free
Cryptography: The Key to Digital Security, How It Works, and Why It Matters Keith Martin
(4/5)
Free
Hacker, Hoaxer, Whistleblower, Spy: The Many Faces of Anonymous Gabriella Coleman
(4/5)
Free
Cyberwar: How Russian Hackers and Trolls Helped Elect a President—What We Don't, Can't, and Do Know Kathleen Hall Jamieson
(3/5)
Free
Exploding Data: Reclaiming Our Cyber Security in the Digital Age Michael Chertoff
(4.5/5)
Free
Internet Riches: The Simple Money-Making Secrets of Online Millionaires Scott Fox
(4/5)
Free
Blockchain Revolution: How the Technology Behind Bitcoin Is Changing Money, Business, and the World Don Tapscott
(4/5)
Free
The Secret Life: Three True Stories of the Digital Age Andrew O'Hagan
(4/5)
Free
Leading in the Digital World: How to Foster Creativity, Collaboration, and Inclusivity Amit S. Mukherjee
(0/5)
Free

Artificial Intelligence – Time Bomb or The Promised Land?

  1. 1. Raffael Marty VP Research and Intelligence Head of X-Labs, Forcepoint Artificial Intelligence – Time Bomb or The Promised Land? Cyber Symposium | September 2019 | Colorado Springs
  2. 2. A Brief Summary We don’t have artificial intelligence (yet) Algorithms can be dangerous - Understand your data and your algorithms We need a paradigm shift in security to escape the cat and mouse game Human factors play a key role in detecting and preventing cyber attacks and insider threat Build systems that capture “expert knowledge” and augment human capabilities
  3. 3. Raffael Marty Sophos PixlCloud Loggly Splunk ArcSight IBM Research Security Visualization Big Data ML & AI SIEM Corp Strategy Leadership Zen
  4. 4. Deep Learning Statistics Unsupervised Machine Learning Natural Language Processing MALWARE IDENTIFICATION PHISHING DETECTION COMMUNICATION ANALYSIS Artificial Intelligence in Security
  5. 5. SECURITY EXAMPLES Facial Recognition Privacy Malware Detection Failure Blacklisting of Windows Executable Pentagon AI Fail Algorithm Bias Data Biases The Dangers of AI
  6. 6. What Makes Algorithms Dangerous? Algorithms make assumptions about the data. Algorithms are too easy to use. Algorithms do not take domain knowledge into account. History is not a predictor of the future.
  7. 7. dest port! Port 70000? src ports! http://vis.pku.edu.cn/people/simingchen/docs/vastchallenge13-mc3.pdfUnderstand Your Data
  8. 8. $1 Trillion Has Been Spent Over The Past 7 Years On Cybersecurity, With 95% Success …For The Attackers 46% say they can’t prevent attackers from breaking into internal networks each time it is attempted. 100% of CIOs believe a breach will occur through a successful phishing attack in next 12 months. Enterprises have seen a 26% increase in security incidents despite increasing budgets by 9% YoY. Source: CyberArk Global Advanced Threat Landscape Report 2018 Sources: Verizon 2018 Data Breach Investigations Report.
  9. 9. Escaping the Security Cat and Mouse Game Reactive Detection Threat Intelligence (IOCs) Event-based Paradigm Shift Proactive Protection and Automation Behavior of humans and machines Risk-based
  10. 10. Rational for The New Paradigm Recon Weaponization Delivery Exploitation Installation Execution • Understand the ‘normal’ behavior of humans and devices • Try to catch attacker as early as possible, • Move coverage to later stages • Does not rely on knowing about types of attacks (zero day resistant) Behavioral Intelligence • Constantly changing • Chasing zero days • Very reactive • Focuses on external attackers Threat Intelligence Does not work if there is no ‘exploitation’ phase. E.g., with insiders Where harm is caused: Critical data and IP being modified, deleted, or exfiltrated
  11. 11. Expanding the Security Framework 1. Understand the movement of data Execution Catch attacks in the preparation phase Discover Explore Collect Exfiltrate, Modify, Destroy Dwell time can be months 2. Understand human and device behavior: Monitor human factors Monitor for deviations from norm Recon Weaponize Assess peer group membership 89 John Flag suspicious entities before any harm is done Includes insiders in the kill chain
  12. 12. Understanding Humans and Data Discover Explore Collect Exfiltrate, Modify, Destroy Monitor Entities • Learn their normal behavior • Learn how they behave relative to their peers • Learn how they interact with critical data and IP • Based on deviations, compute an entity risk Understand Humans • Track and assess human factors Shift to a risk-based approach • An ‘event’ can both be good or bad, depending on the context of the entity 89 John
  13. 13. Addiction, Gambling Performance Patterns of Violations Interpersonal Issues Knowledge, Skills, Ability Financial Distress Detecting and perceiving risk is shaped by our ability to integrate expert knowledge about risk factors and human behavior. Accesses sensitive files Searches for sensitive files Without context, behaviors that may seem “obviously bad” in retrospect, may not be noticed.
  14. 14. Predisposition (Vulnerabilities) Stressors (Triggering Factors) Concerning Behaviors A Framework to Understand Humans • Med/psych conditions • Personality & Social Skills • Previous Rule Violations • Social Network Risks • Personal (life changes, health) • Professional (job loss, salary, etc.) • Financial • Interpersonal • Policy violations • Financial • Mental Health, Addiction • Social Network, Travel Note: None of these components alone are indicators of a crime or attack! RISK
  15. 15. Activities From Activities to Concerning Behaviors RISK ”Detection Rules” that normally generate a lot of false positives are not weighed by the risk of the entities. Activities that, out of context would be benign, now flag an attack ”Risk Adaptive Protection” Risk adjusted “Detections”
  16. 16. Am I here to work for you, or for someone else? Regular Activities Activities Predisposition Stressors Concerning Behaviors • Seeking access or clearance levels beyond current need • Testing security boundaries • Multiple usernames & identities • Social and professional network • Unreported travel • Low communication, lack of social connections in office • None • Communication with competitors
  17. 17. Research Areas / Where we Need AI Numerous foundational problems still unsolved • Taxonomies • Entity resolution / identity attribution Capturing expert knowledge • Explicit • Re-enforcement • Belief networks Communication analytics • NLP • SNA • Peer group analytics (CBC) Risk computation (risk is not linear) • Belief Networks Validation and expansion of human factors framework
  18. 18. The Big AI Challenges Verifyability and Explainability Privacy • Doing the right thing for the ‘consumer’ • Compliance with GDPR and other regulations Efficacy • How to provably show what algorithms do? • How to compare against other solutions / algorithms? • How to know we are protected? • Preventing ‘snake oil’ Socio-ethical conversation • Big brother? Surveillance? Where are the boundaries? • Where are boundaries of what is okay to be collected and analyzed? Training data for both supervised algorithms and hypothesis testing The world's first dynamic 'non-factor’ based quantum AI encryption software, utilizing multi-dimensional encryption technology, including time, music's infinite variability, artificial intelligence, and most notably mathematical constancies to generate entangled key pairs. – Snake Oil
  19. 19. Takeaways “The way algorithms are used is often dangerous. Hire experts.” “We need a paradigm shift to escape the security cat and mouse game.” “Understanding human factors can help getting ahead of attackers”
  20. 20. @raffaelmarty @ForcepointSec @ForcepointLabs ForcepointForcepoint LLCForcepoint Questions? http://slideshare.net/zrlram

×