adversarial ai in cyber security who am i join trend
play

Adversarial AI in Cyber Security WHO AM I - PowerPoint PPT Presentation

Nov 29, 2023 •331 likes •686 views

Adversarial AI in Cyber Security WHO AM I Join Trend Micro on 2009 Infra Developer Threat Researcher Machine Learning Researcher Join XGen ML project on 2015 Now leading

  1. 資訊安全中的人工智能對抗 Adversarial AI in Cyber Security 張佳彥

  2. WHO AM I • Join Trend Micro on 2009 – Infra Developer – Threat Researcher – Machine Learning Researcher • Join XGen ML project on 2015 • Now leading the Machine Learning Research/Operation team of XGen

  3. Agenda • What is Machine Learning ? • What is Adversarial Machine Learning ? • Adversarial ML Methodologies • Possible countermeasures • Conclusions

  4. Machine Learning & Adversarial Machine Learning

  5. XGen ML – Layer protection

  6. What is Machine Learning

  7. What is Adversarial Machine Learning Adversarial machine learning is a technique employed in the field of machine learning which attempts to fool models through malicious input. - Wikipwdia

  8. What is Adversarial Machine Learning Image Recognition

  9. What is Adversarial Machine Learning Image Recognition

  10. What is Adversarial Machine Learning Spam Detection Spam content salad word

  11. Adversarial ML Methodologies

  12. Adversarial ML Methodologies • Evasion Attack • Black box • White box • model stealing • Poisoning Attack

  13. Adversarial ML Methodologies Prediction (classification) Predict misclassify Model Evasion Train Training Training set

  14. Adversarial ML Methodologies Prediction (classification) Predict misclassify Model Train Training Cats Poison Dogs Training set

  15. Evasion • Black Box • Hacker can only test model with Input/Output Input Output Model • White Box • Hacker knows the detail parameters of the model Input Output

  16. Black Box Evasion: Iterative Random Attack Evasion successful ratio = 1/1000

  17. Black Box Evasion: Genetic Algorithm ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● Model ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● Baseline (seed) ●●●●●●●● ●●●●●●●● ●●●●●●●● Probe ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● Select ●●●●●●●● Random Random ●●●●●●●● ●●●●●●●● 1 st generation lowest score next generation ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● n possible changes (DNA) ●●●●●●●● ●●●●●●●● ●●●●●●●● ●●●●●●●● N generation… Evasion successful ratio = 1/100

  18. Poison Attack • Online training

  19. Countermeasures

  20. Adversarial ML Countermeasures • Evasion Attack - Black box • Abuse Protection • Model Retrain • Reactive • Proactive (GAN) • Evasion Attack - White box • Data/feature/model protection • Poisoning Attack • Data/Label quality control

  21. Adversarial ML Countermeasures • Evasion Attack - Black box • Abuse Protection • Model Retrain • Reactive • Proactive (GAN) • Evasion Attack - White box • Data/feature/model protection • Poisoning Attack • Data/Label quality control

  22. Adversarial ML Countermeasures

  23. Adversarial ML Countermeasures • Evasion Attack - Black box • Abuse Protection • Model Retrain • Reactive • Proactive • Evasion Attack - White box • Data/feature/model protection • Poisoning Attack • Data/Label quality control

  24. Adversarial ML Countermeasures Security company model to identify malware Hacker generate malware to cheat classifier

  25. Adversarial ML Countermeasures Reactive model retrain

  26. Adversarial ML Countermeasures Proactive model retrain

  27. Adversarial ML Countermeasures What if the hair length is an important feature?

  28. Adversarial ML Countermeasures • Trade off • Robustness or Accuracy • Proactive or Reactive • Fast or Confidence

  29. Adversarial ML Countermeasures • Trade off • Robustness or Accuracy • Proactive or Reactive • Fast or Confidence

  30. Adversarial ML Countermeasures • Evasion Attack - Black box • Abuse Protection • Model Retrain • Reactive • Proactive (GAN) • Evasion Attack - White box • Data/feature/model protection • Poisoning Attack • Data/Label quality control

  31. Adversarial ML Countermeasures • Evasion Attack - Black box • Abuse Protection • Model Retrain • Reactive • Proactive (GAN) • Evasion Attack - White box • Data/feature/model protection • Poisoning Attack • Data/Label quality control

  32. Conclusions

  33. Conclusions • Almost all models can be cheated • Find possible vulnerabilities and take the proper actions • This is an endless battle • Pros: Global visibility and excellent operation • Cons: 1 FN will cause the damage

  34. Conclusions • There is no silver bullet for Cyber Security • Dynamic & Fast Response are the key points

  35. Thank You

Recommend

Cyber@UC Meeting 70 Networking and Basic Security If Youre New! Join our Slack:

Cyber@UC Meeting 70 Networking and Basic Security If Youre New! Join our Slack:

Cyber@UC Meeting 70 Networking and Basic Security If Youre New! Join our Slack: cyberatuc.slack.com (URL changed!) SIGN IN! (Slackbot will post the link in #general every Wed@6:30) Feel free to get involved with one of our

489 views • 20 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
SECURITY, ADVERSARIAL SECURITY, ADVERSARIAL LEARNING, AND PRIVACY LEARNING, AND PRIVACY

SECURITY, ADVERSARIAL SECURITY, ADVERSARIAL LEARNING, AND PRIVACY LEARNING, AND PRIVACY

SECURITY, ADVERSARIAL SECURITY, ADVERSARIAL LEARNING, AND PRIVACY LEARNING, AND PRIVACY Christian Kaestner with slides from Eunsuk Kang Required reading: Hulten, Geoff. "Building Intelligent Systems: A Guide to Machine Learning

1.95k views • 113 slides
Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web

Web Security Cyber Security Lab Spring '10 04/15/10 Cyber Security Lab 1 Outline Web application weaknesses XSS AJAX weaknesses SQL Injection Attacks (Slides from Lars Olson)

588 views • 41 slides
Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three

Cyber Security Maintaining Your Identity on the Net Why Cyber Security? There are three points of failure in any secure network: Technology (hardware and software) Technology Support (ITS) End Users (USD students and employees)

359 views • 23 slides
CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY

CYBER SECURITY PROTECTING AGAINST CYBER FRAUD IN SCALEUP COMPANIES AND WHAT TO DO SHOULD THEY HAPPEN London June 2019 INTRODUCTION Cyber Security The activity or process, ability or capability, or state whereby information and

735 views • 24 slides
ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* *

ICSS2015: International Cyber Security Strategy Congress: Cyber Security and Forensic Readiness* * Preliminary programme, subject to revision/update status 16 December 2014 4 February 2015 Day 1: Cyber Security Readiness Registration KU

306 views • 4 slides
Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford

Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford

16 Oct 2012 Homeland Security Perspectives: Cyber Security Partnerships and Measurement Activities Bradford Willke Cyber Security Advisor, MidAtlantic Region National Cyber Security Division (NCSD) Office of Cybersecurity and Communications

443 views • 20 slides
Digital Ecosystem 21 November 2019 The Global Trend The Technologies Today The Emerging

Digital Ecosystem 21 November 2019 The Global Trend The Technologies Today The Emerging

2019 MCMC Research Symposium Cyber Security vs. Cyber Resilience ~Knowing the difference and relevance in strengthening the Digital Ecosystem 21 November 2019 The Global Trend The Technologies Today The Emerging Technologies The Near

303 views • 12 slides
Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com

Cyber@UC; Meeting 28 Cyber Kill Chain If Youre New! Join our Slack ucyber.slack.com Follow us on Twitter @UCyb3r and Facebook UC.yber; University of Cincinnati OWASP Chapter Feel free to get involved with one of our committees:

430 views • 23 slides
Cyber security Current challenges Ludovic M, septembre 2019 Cyber security ? Three triptychs !

Cyber security Current challenges Ludovic M, septembre 2019 Cyber security ? Three triptychs !

Cyber security Current challenges Ludovic M, septembre 2019 Cyber security ? Three triptychs ! 3 properties ... Confidentiality (including personal data) Integrity Availability 2 -Sminaire LIRIMA: Cyber security: current

876 views • 64 slides
2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor,

2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor,

2018 Legislative Ag Chairs Summit Cyber Security Geoff Jenista, CISSP Cyber Security Advisor, Region VII Office of Cybersecurity and Communications (CS&C) National Protection and Programs Directorate (NPPD) FOUO / UNCLASS Cyber Security

333 views • 12 slides
Adversarial Examples and Adversarial Training Ian Goodfellow, OpenAI Research Scientist Security

Adversarial Examples and Adversarial Training Ian Goodfellow, OpenAI Research Scientist Security

Adversarial Examples and Adversarial Training Ian Goodfellow, OpenAI Research Scientist Security Seminar, Stanford University, 2017-01-17 In this presentation Intriguing Properties of Neural Networks Szegedy et al, 2013

939 views • 44 slides
Shorting, reporting and profiting in the era of cyber security Recent short seller collaborations

Shorting, reporting and profiting in the era of cyber security Recent short seller collaborations

SHORT SELLING Shorting, reporting and profiting in the era of cyber security Recent short seller collaborations with security researchers demonstrate a new trend in the evolving short seller strategy of publishing harmful information about a

154 views • 3 slides
CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

Eric Weston Wally Magda, CISSP, PSP, CISA Compliance Auditor, Cyber Compliance Auditor, Cyber Security Security CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September 24-25, 2013 Salt Lake City, UT No

2.02k views • 198 slides
CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview

CYBER SECURITY Nick Kervin Partner, IT Advisory August 2017 Page 1 CYBER SECURITY Overview 1. What is at risk? 2. Global industry trends 3. BDO/AusCERT survey 4. Recent cyber case studies 5. Cyber risk mitigation strategies Page

481 views • 35 slides
Healthy Approach to Cyber Security : For data-intensive healthcare, cyber security is integral to

Healthy Approach to Cyber Security : For data-intensive healthcare, cyber security is integral to

1 Healthy Approach to Cyber Security : For data-intensive healthcare, cyber security is integral to innovation Sallie Sweeney KPMG The healthcare industrys evolution toward a true value based system, assuming responsibility for complex

797 views • 10 slides
Centre for Cyber Security Thomas Kristmar Centre for Cyber Security Danish Defence Intelligence

Centre for Cyber Security Thomas Kristmar Centre for Cyber Security Danish Defence Intelligence

Centre for Cyber Security Thomas Kristmar Centre for Cyber Security Danish Defence Intelligence Service 05-10-2015 05-10-2015 Who are we? Centre for Cyber Security In respect of the Rule of Law and Privacy Cyber is a priority (Gov.

455 views • 18 slides
Security Testing Checking for what shouldnt happen Azqa Nadeem PhD Student @ Cyber Security

Security Testing Checking for what shouldnt happen Azqa Nadeem PhD Student @ Cyber Security

Security Testing Checking for what shouldnt happen Azqa Nadeem PhD Student @ Cyber Security Group The Cyber Security lecture series 1 Agenda for today Part I Latest security news Security vulnerabilities in Java

2.02k views • 185 slides
Cyber Security Information Sharing Oscar Serrano NCI Agency Cyber Security Service Line

Cyber Security Information Sharing Oscar Serrano NCI Agency Cyber Security Service Line

Cyber Security Information Sharing Oscar Serrano NCI Agency Cyber Security Service Line DeepSec 2014, Vienna, 21 November 2014 NATO UNCLASSIFIED Cyber Security In NATO NATO in a nutshell: Collective defence Interoperable

666 views • 42 slides
Join Join nt Executive Committee nt Executive Committee th Sept 2017 26 th Strat Strat ta

Join Join nt Executive Committee nt Executive Committee th Sept 2017 26 th Strat Strat ta

Join Join nt Executive Committee nt Executive Committee th Sept 2017 26 th Strat Strat ta Update ta Update 26 Sept 2017 Strata IT Director Upda ate GDIP Global Programme Comms Key Focus Cyber Managing Security Workload But

577 views • 35 slides
Cyber security Tiered approach to cyber security preparedness in water National Sector

Cyber security Tiered approach to cyber security preparedness in water National Sector

Cyber security Tiered approach to cyber security preparedness in water National Sector What I am Company utilities in the UK going to Water UK good practice cover NIS Directive Dr Jim Marshall, Senior Policy Advisor,

231 views • 4 slides
Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK

Cyber Security February - 2016 Agenda Overview of Cyber Crime The top cyber threats to UK businesses and how to remain safe What help is available Further reading Setting the scene 21.2bn The cost of fraud to the

304 views • 19 slides

More recommend