Welcome to Scribd!

Skip carousel

Ict2018

Uploaded by

officelifehq

0% found this document useful (0 votes)

2 views9 pages

Original Title

20181205_ICT2018

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

2 views9 pages

Ict2018

Uploaded by

officelifehq

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 9

Search inside document

Big Data & Machine Learning for network

security: approaches and benchmarks

Antonio Lioy (moderator)

< antonio.lioy@polito.it >
Politecnico di Torino

ICT-2018 networking session

Vienna (Austria)
December 5th, 2018
Projects & speakers
SHIELD: ecosystem of on-demand virtualized security
functions with (1) trust and integrity attestation of the
physical infrastructure, and (2) central ML-based engine for
attack detection and remediation
Bernat Gaston, PhD, director of the Big Data and ML
department in Fundació I2CAT, Barcelona
PROTECTIVE: evolve cyber situational awareness into
effective ready-to- use security management solutions for
CSIRTs and provide threat intelligence sharing capabilities
Maciej Miłostan, is a security analyst in Poznań
Supercomputing and Networking Center (PSNC)
C3ISP: data sharing and analytics for cyber threat
information mgmt in a collaborative and confidential env
Andreas Alexiou, International R&D Partnerships Lead at
Digital Catapult; his background is in technology innovation 2
Rule-based systems
vs ML approaches

Rule-based systems ML approaches

Advantages Advantages
• Immediate remediation • Supervised +
• Reduction of false unsupervised
positives combination
• Controlled • Wide spectrum
environment prevention
• Model update (retrain)

Drawbacks
Drawbacks
• Lack of flexibility
• Detection time
• No anomaly
detection • False positives /
(0-day attacks) False negatives
3
Prioritisation / Preference Learning
Deadline Severity
Time of detection
Criteria Assets
ALERTS

PREFERENCE LEARNING/
Attack Types
MULTIPLE CRITERIA
Trust Value

MCDA
Criticality SORTING

? HANDLING HISTORY

EXAMPLES FROM USER

RANKING/ PRIORITIES FOR THE USER/

PREFERENCE MODEL
A dash board for trade-off between
accuracy and privacy in analytics
Service Trust Level Assumption by prosumers
Low Medium High
Homomorphic Anonymization Complete data
Encryption access
Standard
Encryption No data
encryption

Accuracy
Privacy

Slow Fast
Performance
Big Data approaches
to cybersecurity
From decentralized
to centralized Big Data paradigm
Centralized vs for Cybersecurity
Reduction
decentralized of data sent
More informed decisions

Faster decisions K
Hybrid n
Centralized Decentralized
systems T o
Holistic view Fast reaction
of the system a w
BigData s l
Heterogeneous No extra traffic paradigm k
data analysis e
s d
g
e

6
Complex Event processing

Streaming SQL / Rules

Sensors
IDS Strea
Firewalls m Complex Event
Threat Strea Processor
Inteligence m
Real-time analysis
Netflows Strea
m
(WSO2 Siddhi)

Large amount of Analyze

Ingest Store/Report/Act
data in real-time in real-time

Events => Complex Events

Data Sharing Agreements for CTI
Data Sharing contracts for Data Analytics Services
allowing confidential and trusted treatment of CTI:
• Empowering the data owners to protect their
data from trusted and untrusted services ,
considering two extremes:
▪ When the data analytics service is trusted
we use just usage control mechanisms
▪ When the data analytics is not trusted
we can use homomorphic encryption
(or anonymization) to allow collaborative
and confidential analysis
• Data usage control techniques, including sticky
policies.
Enhancing security data analytics as a service:
• algorithms and services based data analytics for security
THANK YOU !

SHIELD – https://www.shield-h2020.eu/

PROTECTIVE – https://protective-h2020.eu/

C3ISP – https://c3isp.eu/

Tracxn Program Manager - Case Study
Document14 pages
Tracxn Program Manager - Case Study
Naveen Chaturvedi
50% (2)
CEH Exam Guide 1655946489
Document73 pages
CEH Exam Guide 1655946489
Alonso Adlan
No ratings yet
IBM SIEM Security and SOC Optimization
Document25 pages
IBM SIEM Security and SOC Optimization
Nikitas Kladakis
100% (2)
Smart City
Document4 pages
Smart City
Shrishti Sinha
No ratings yet
1.01 - Guardium Data Protection Overview
Document20 pages
1.01 - Guardium Data Protection Overview
ishtiaq
No ratings yet
NIS2 Webinar
Document52 pages
NIS2 Webinar
Mario Durand
No ratings yet
BDA Presentations
Document26 pages
BDA Presentations
Tejaswini
No ratings yet
CISSP - All
Document530 pages
CISSP - All
toyeve4326
No ratings yet
Emergence of Smart Analytics
Document34 pages
Emergence of Smart Analytics
Durgasharan Pandey
No ratings yet
Open PESTalk
Document52 pages
Open PESTalk
Aaditya Telang
No ratings yet
Data Driven Decision Making
Document27 pages
Data Driven Decision Making
Alfred Wijaya
No ratings yet
Workshop Guangzhou Dec 2017
Document21 pages
Workshop Guangzhou Dec 2017
Richard Hill
No ratings yet
Data Privacy Governance
Document22 pages
Data Privacy Governance
Simar
No ratings yet
Re Thinking Enterprise Security Zero Trust Security Principles For A Safer More Secure Environment
Document2 pages
Re Thinking Enterprise Security Zero Trust Security Principles For A Safer More Secure Environment
EstebanChiang
No ratings yet
MDR MSOCplus Starter Discussion
Document33 pages
MDR MSOCplus Starter Discussion
Mayur
No ratings yet
Intelligent Data and Analytics Fabric
Document18 pages
Intelligent Data and Analytics Fabric
cwag68
No ratings yet
Cisco Secure Network Analytics (Formerly Stealthwatch) Data Sheet
Document14 pages
Cisco Secure Network Analytics (Formerly Stealthwatch) Data Sheet
Timucin DIKMEN
No ratings yet
05 Intellza Brochure
Document4 pages
05 Intellza Brochure
shrutiverma_1
No ratings yet
Chapter 3 1
Document29 pages
Chapter 3 1
Mohammad Islam
No ratings yet
Big Data and The Information Management System
Document9 pages
Big Data and The Information Management System
Rico Martenstyaro
No ratings yet
FloCon 21 - Improving Security Operations Through Security Data Discipline
Document10 pages
FloCon 21 - Improving Security Operations Through Security Data Discipline
greycompanion
No ratings yet
Master Sales Presentation V9
Document18 pages
Master Sales Presentation V9
Sarthak Thakur
No ratings yet
Attack Prevention in IoT Through Hybrid Optimization Mechanism and Deep Learning Framework
Document10 pages
Attack Prevention in IoT Through Hybrid Optimization Mechanism and Deep Learning Framework
jupeth pentang
No ratings yet
Leveraging Centralized Threat Intelligence
Document16 pages
Leveraging Centralized Threat Intelligence
know_idea8867
No ratings yet
Extending Security Intelligence With Big Data Solutions
Document8 pages
Extending Security Intelligence With Big Data Solutions
Yash
No ratings yet
Design Consideration For Cloud Applications
Document16 pages
Design Consideration For Cloud Applications
Ashutosh Maurya
No ratings yet
A Conventional Model For Security Challenges in Industrial Internet of Things
Document7 pages
A Conventional Model For Security Challenges in Industrial Internet of Things
Vinod Deenathayalan
No ratings yet
Data Governance Sudhir Rawat
Document9 pages
Data Governance Sudhir Rawat
Gaurav
No ratings yet
Secured Data Lineage Transmission in Malicious Environment: K. Indumathi
Document3 pages
Secured Data Lineage Transmission in Malicious Environment: K. Indumathi
snet solutions
No ratings yet
Automated Threat Detection and Response (ATDR) : Customer Presentation
Document16 pages
Automated Threat Detection and Response (ATDR) : Customer Presentation
Ayyansh&Amyrah Masurkar
No ratings yet
Nicolas Rafael Palomino W3C Application
Document11 pages
Nicolas Rafael Palomino W3C Application
Lis Lis
No ratings yet
Consolidated Storage Customer Deck
Document32 pages
Consolidated Storage Customer Deck
Afiful Hashif
No ratings yet
SEACEN-HSBC Online Seminar On Digitalisation Policies, Issues and Challenges
Document22 pages
SEACEN-HSBC Online Seminar On Digitalisation Policies, Issues and Challenges
Kar Lyle
No ratings yet
Medical IoT Strategy
Document20 pages
Medical IoT Strategy
upadhyaygimabir
No ratings yet
Strategy For Your Could Journey
Document10 pages
Strategy For Your Could Journey
Terance Francis
No ratings yet
Symantec Data Loss Prevention Core Solution
Document3 pages
Symantec Data Loss Prevention Core Solution
dviktor
No ratings yet
Mandiant - Company - Presentation - SHORT - V0.1 MASTER
Document38 pages
Mandiant - Company - Presentation - SHORT - V0.1 MASTER
uakarsu
No ratings yet
2019-06-27 Item 1 - Supervision Techniques For IT Risk and Cyber
Document24 pages
2019-06-27 Item 1 - Supervision Techniques For IT Risk and Cyber
Sumaiya
No ratings yet
A Hybrid Approach of Privacy Preserving Data
Document6 pages
A Hybrid Approach of Privacy Preserving Data
Kanna
No ratings yet
1 - A - Automate - Cybersecurity - Data - Triage - by - Leveraging - Human - Analysts - Cognitive - Process-5
Document7 pages
1 - A - Automate - Cybersecurity - Data - Triage - by - Leveraging - Human - Analysts - Cognitive - Process-5
Stephen Njeri
No ratings yet
ReliaQuest GreyMatter - One Pager
Document2 pages
ReliaQuest GreyMatter - One Pager
Dave McCann
No ratings yet
Nozomi Networks Guardian Data Sheet
Document8 pages
Nozomi Networks Guardian Data Sheet
rerips.fakyu
No ratings yet
Manage Network Traffic With Advanced Intelligence
Document30 pages
Manage Network Traffic With Advanced Intelligence
saag
No ratings yet
Irjaes V2n2p325y17
Document5 pages
Irjaes V2n2p325y17
II9I4005I Uni Andriani Sitohang (119140051 Uni A Sitohang)
No ratings yet
Managed Detection and Response (MDR) : Solution Brief
Document2 pages
Managed Detection and Response (MDR) : Solution Brief
Anderson Wanselowski
No ratings yet
PPT01-Introduction To Big Data
Document34 pages
PPT01-Introduction To Big Data
TsabitAlaykRidhollah
No ratings yet
Blockchain Security: A Framework For Trust and Adoption
Document44 pages
Blockchain Security: A Framework For Trust and Adoption
Jorge Eterovic
No ratings yet
Battlecard Cynet Vs Darktrace
Document4 pages
Battlecard Cynet Vs Darktrace
Ventas Optimus
No ratings yet
2014 - User-Centric Identity As A Service-Architecture For eIDs With Selective Attribute Disclosure
Document12 pages
2014 - User-Centric Identity As A Service-Architecture For eIDs With Selective Attribute Disclosure
PeraKojot
No ratings yet
Modern Data Security
Document20 pages
Modern Data Security
salma.chrichi2001
No ratings yet
Nokia Internet of Things Operator Strategies
Document12 pages
Nokia Internet of Things Operator Strategies
Maha zeinelabdin
No ratings yet
Bigdata Market Trends Key Offerings Case Studies
Document16 pages
Bigdata Market Trends Key Offerings Case Studies
Upendra Kumar
No ratings yet
Applied Cognitive Security: Complementing The Security Analyst
Document21 pages
Applied Cognitive Security: Complementing The Security Analyst
abidou
100% (1)
A Presentation and A Demo On Real-Time Edge Analytics
Document38 pages
A Presentation and A Demo On Real-Time Edge Analytics
Anupama
No ratings yet
CNB - Cyber Security & Ai Agenda: Saas Platform
Document5 pages
CNB - Cyber Security & Ai Agenda: Saas Platform
satyanarayana nagam
No ratings yet
S1 5 VNCS
Document30 pages
S1 5 VNCS
Dang Minh Giap
No ratings yet
Managed Detection & Response (MDR) - 4pg
Document4 pages
Managed Detection & Response (MDR) - 4pg
NewReader
No ratings yet
DNN DPCS Webinar (4) Security 101
Document12 pages
DNN DPCS Webinar (4) Security 101
Chen Michael
No ratings yet
DG Platform Technical Overview WP
Document17 pages
DG Platform Technical Overview WP
coba coba
No ratings yet
Tippingpoint Security Management System: Trend Micro
Document4 pages
Tippingpoint Security Management System: Trend Micro
abidou
No ratings yet
Augmenting High-Performance Mobile Cloud Computations For
Document13 pages
Augmenting High-Performance Mobile Cloud Computations For
munwar
No ratings yet
AI and ML Applications for Decision-Making in Zero Trust Cyber Security
From Everand
AI and ML Applications for Decision-Making in Zero Trust Cyber Security
Dr. Zemelak Goraga
No ratings yet
Product Requirement Document Maxim Mobile App 1669682315
Document17 pages
Product Requirement Document Maxim Mobile App 1669682315
AdSMS Indonesia
No ratings yet
Netherlands Final Position Paper Final
Document3 pages
Netherlands Final Position Paper Final
shreya
No ratings yet
The Blissfully G Suite Admin Guide
Document17 pages
The Blissfully G Suite Admin Guide
Stéphane Mailleux
No ratings yet
Ifs 132 Group Assignment 00000003
Document7 pages
Ifs 132 Group Assignment 00000003
api-295702103
No ratings yet
Internet Challenges On Cyber-Crimes & Abuses
Document59 pages
Internet Challenges On Cyber-Crimes & Abuses
Shanu Uddin Rubel
No ratings yet
Configuring CBAC
Document50 pages
Configuring CBAC
referenceref31
No ratings yet
Chapter 1 - Exploring The Network
Document60 pages
Chapter 1 - Exploring The Network
risalynramrez
No ratings yet
Cleaning Out Your Outlook E-Mail
Document19 pages
Cleaning Out Your Outlook E-Mail
tonzkosgei
No ratings yet
Guide On The Best Social Media Platform For Your Business
Document8 pages
Guide On The Best Social Media Platform For Your Business
Nivedkrishna Thavarayil
No ratings yet
Common Interface Design Mistakes
Document36 pages
Common Interface Design Mistakes
Namra Khatoon
No ratings yet
Ns Lab-12
Document14 pages
Ns Lab-12
Malkapurapu Sivamanikanta
No ratings yet
VL7002 Question Bank
Document34 pages
VL7002 Question Bank
Darwin
No ratings yet
The Emerging Power of Social Media - Prospects and Problems
Document2 pages
The Emerging Power of Social Media - Prospects and Problems
Channel For All
No ratings yet
Sase For Dummies Versa Networks Special Edition Kumar Mehta All Chapter
Document67 pages
Sase For Dummies Versa Networks Special Edition Kumar Mehta All Chapter
tracy.garland627
100% (14)
Setting Template Bootstrap
Document17 pages
Setting Template Bootstrap
Sonia
No ratings yet
Digital Marketing
Document5 pages
Digital Marketing
ryad
No ratings yet
User's Manual For Etross GoIP-400
Document50 pages
User's Manual For Etross GoIP-400
Maicon Vinicius Nunes
No ratings yet
Research Paper On Cybercrime in India PDF
Document7 pages
Research Paper On Cybercrime in India PDF
rrndfrrif
100% (1)
ATN Full Site Script U4324
Document2 pages
ATN Full Site Script U4324
Heather Wallace
No ratings yet
Whitepaper of Facemeta V2
Document14 pages
Whitepaper of Facemeta V2
r_sartorato
No ratings yet
Open Navigation Menuopen Navigation Menuopen Navigation Menuopen Navigation Menuopen Navigation Menuopen Navigation Menu
Document4 pages
Open Navigation Menuopen Navigation Menuopen Navigation Menuopen Navigation Menuopen Navigation Menuopen Navigation Menu
Gri Ni
No ratings yet
Web Technology Notes
Document13 pages
Web Technology Notes
Temp Mail
No ratings yet
Escan Company Presentation - April 2006
Document49 pages
Escan Company Presentation - April 2006
JD MY
No ratings yet
FortiOS 6.4.6 Administration Guide
Document1,880 pages
FortiOS 6.4.6 Administration Guide
Sandro Henrique de Oliveira
No ratings yet
Contacts - Sanyo Denki India Private Limited
Document2 pages
Contacts - Sanyo Denki India Private Limited
M.D. Niyaz
No ratings yet
How Web Applications Work
Document23 pages
How Web Applications Work
Kalyan Nanduri
No ratings yet
App Registration and Configuration in D365 FO-General
Document6 pages
App Registration and Configuration in D365 FO-General
nitish dikshit
No ratings yet
Um Só Banco de Dados Wix para Vários Sites Wix (2023)
Document3 pages
Um Só Banco de Dados Wix para Vários Sites Wix (2023)
Gustavo Alexandre Gustavo TIM Brasil
No ratings yet