Upgrade to Pro — share decks privately, control downloads, hide ads and more …

SecuML: Machine Learning for Computer Security

BlueHats
December 06, 2018
Technology
0
230

SecuML: Machine Learning for Computer Security

BlueHats

December 06, 2018
Tweet

More Decks by BlueHats

See All by BlueHats
Accélérateur dʼinitiatives citoyennes - BlueHats - OSX2023
bluehats
0
13
e2e SDK - Chiffrement de bout en bout à la Fabrique Numérique - BlueHats - OSX2023
bluehats
0
16
DashLord - Tableau de bord des métriques techniques - BlueHats - OSX2023
bluehats
0
32
Madis Un outil Open Source adapté au DPO mutualisé ! - BlueHats - OSE2023
bluehats
0
27
Présentation du MESR lors d'un groupe de travail sur l'ouverture des codes sources
bluehats
0
25
Socle interministériel de logiciels libres - synthèse de la recherche utilisateurs 2022
bluehats
0
150
Plan d'action logiciels libres et communs numériques : un an plus tard
bluehats
0
300
Esup-Pod : la plateforme vidéo de l'enseignement supérieur
bluehats
0
64
Collaboration interministérielle autour de Jitsi
bluehats
0
46

Other Decks in Technology

See All in Technology
どうするコスト最適化のトレードオフ
tetsuyaooooo
1
520
APIファーストなプロダクトマネジメントの実践 〜SaaSus Platformでの例〜 / "Practicing API-First Product Management - An Example with SaaSus Platform
oztick139
0
110
プロンプトエンジニアリングでがんばらない-Agentic Workflow へ-近藤憲児
kenjikondobai
2
670
MySQL の SQL クエリチューニングの要所を掴む勉強会
andpad
3
6.4k
ServiceNow Knowledge Learning Rise up
manarobot
0
210
チームでロジカルシンキングに改めて向き合っている話 〜学習環境と実践⽅法〜
sansantech
PRO
3
2.5k
FrontDoorとWebAppsを組み合わせた際のリダイレクト処理の注意点
kenichirokimura
1
520
【NW X Security JAWS#3】L3-4:AWS環境のIPv6移行に向けて知っておきたいこと
shotashiratori
0
260
IaCジェネレーターとBedrockで詳細設計書を生成してみた
tsukasa_ishimaru
1
230
MapLibreとAmazon Location Service
dayjournal
1
160
オーナーシップを持つ領域を明確にする
konifar
13
3.2k
障害対応をちょっとずつよくしていくための 演習の作りかた
heleeen
0
220

Featured

See All Featured
The Pragmatic Product Professional
lauravandoore
25
5.8k
Imperfection Machines: The Place of Print at Facebook
scottboms
260
12k
Six Lessons from altMBA
skipperchong
21
3k
A better future with KSS
kneath
231
16k
Infographics Made Easy
chrislema
238
18k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
34
8.9k
Designing for humans not robots
tammielis
248
25k
Thoughts on Productivity
jonyablonski
58
3.8k
Faster Mobile Websites
deanohume
299
30k
Product Roadmaps are Hard
iamctodd
44
9.7k
Making Projects Easy
brettharned
108
5.5k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
227
16k

Transcript

  1. SecuML: Machine Learning for Computer Security Experts Anaël Beaugnon [email protected]

    Laboratoire Exploration et recherche en Détection (LED) Paris Open Source Summit - 06/12/2018

  2. Computer Security Detection Systems Communications · · · Detection System

    Security administrator Detection methods Security operators Alerts Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 2/8

  3. Computer Security Detection Systems Communications · · · Detection System

    Security administrator Detection methods Security operators Alerts Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 2/8

  4. Building Machine Learning Detection Models The Whole Machine Learning Pipeline

    PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF PDF -3.5 1.3 0 2.4 -3 0.5 -1.4 0 3.4 -1 0.3 2.3 -0.5 1.1 . . . -1.3 0 3.2 1.3 -0.7 0 -2.9 -3.5 1.3 0 2.4 -3 0.5 -1.4 0 3.4 -1 0.3 2.3 -0.5 1.1 . . . -1.3 0 3.2 1.3 -0.7 0 -2.9 ok 1 2 3 4 ko 1 Feature extraction 2 Annotation 3 Which model class ? 4 Evaluation PhD Thesis A. Beaugnon, Expert-in-the-Loop Supervised Learning for Computer Security Detection Systems Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 3/8

  5. Building Machine Learning Detection Models Challenges Non-machine learning experts Generic

    solution (not limited to texts or images) Graphical user interface (visualization and interaction) Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 4/8

  6. SecuML: Beyound scikit-learn scikit-learn Classification, clustering, dimension reduction, etc. Scaling,

    grid search, cross validation, etc. SecuML Hide some of the machine learning machinery GUI to visualize and interact with ML models Work on any data type Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 5/8

  7. DIADEM (DIAgnosis of DEtection Models) Training and Evaluation Anaël Beaugnon

    SecuML: Machine Learning for Computer Security Experts 6/8

  8. In-situ annotations with ILAB (Interactive LABeling) Reducing the annotation workload

    Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 7/8

  9. SecuML: Machine Learning for Computer Security Experts Only for Computer

    Security experts ? Work on any data type Visualization and diagnosis of machine learning models Data annotation with a reduced workload Open source implementation: https://github.com/ANSSI-FR/SecuML Online documentation: https://anssi-fr.github.io/SecuML/ Anaël Beaugnon SecuML: Machine Learning for Computer Security Experts 8/8