Welcome!

Related Topics: Cloud Security, Java IoT, Microservices Expo, Linux Containers, Agile Computing, SDN Journal

Cloud Security: Article

Security Threats Continue to Grow

How Big Data and Machine Learning Can Work Together to Solve Security Threats

They read like a list of horror stories for businesses big and small alike. Sony’s PlayStation Network is hacked twice, exposing the personal information of 77 million customers. Zappos becomes the victim of a hack that exposes the addresses and phone numbers of 24 million people. Up to 81 million Yahoo email customers’ passwords are compromised, forcing the company to tell its users to reset them immediately. 110 million customers are affected when hackers infiltrate Target, and PIN numbers and credit card information are stolen. But these stories of major security breaches aren’t works of fiction--they actually happened, and it’s a concern businesses all over the world live with. Many companies are now turning to big data and machine learning as a way to tackle these risks and make sure valuable data is protected at all times.

Dealing with IT security issues is certainly nothing new for businesses. Computer viruses, malware, worms, and other threats have been around for a while, forcing companies to come up with solutions to either eliminate them or minimize the damages they cause. Much of this approach has been reactive in nature, essentially identifying a new threat or tactic hackers are using and developing the means to fight it. Older security systems had to search through smaller clusters of data to identify patterns that might indicate an attack, but the systems required significant resources and time to work, and even then their success rate was hit-and-miss. Systems were usually finding themselves being left behind by would-be attackers, forced to play catch-up in a game with a lot at stake.

With the growth of big data, data security has become even more complex and difficult to manage. More and more data is being created around the world, and trying to sort through all of it to identify security risks would tax older systems immensely. With new solutions desperately needed, many experts turned to machine learning. In simple terms, machine learning is a system that performs certain tasks by continuously learning from data without the need for specific programming. Machine learning can be used to detect security threats by sorting through all that data, something that simply wasn’t possible to that extent several years ago. Unlike traditional systems, which can get bogged down the more data they have to sort through, machine learning can actually get better if more data is added.

The way machine learning is able to detect security threats is by going through the data and identifying the signs and code that point to potential risks. This in turn creates a profile of what to look for, allowing machine learning and security systems to be able to predict and act on threats before they even happen. Essentially, machine learning can be used for security in much the same way it is used for advertising and marketing, targeting certain features it has determined through pattern recognition and using behavioral analytics to make more accurate predictions. This analysis is not only able to capture the hard data involved in security risks, it captures the context of risky events and can connect the relationships of those events to better understand just how threatening the risk actually is. This entire process takes less time than traditional systems and does not slow down productivity.

Threat detection through machine learning and big data was once out of reach for smaller businesses due to cost concerns and personnel requirements, but as these technologies have matured, smaller operations are now getting more access through big data cloud technology. The advances in recent years makes the utilization of machine learning possible for smaller security teams. In fact, security threat detection through machine learning is more of a hands-off process since machine learning systems undergo training on their own. The system is always learning, populating training sets to always get better at detecting security risks, even if they are new. The processing power and storage capabilities needed for machine learning are also within reach for small businesses thanks to advances in flash storage. The growing adaptability for companies makes security more robust and predictive instead of reactive.

There will never be a way to completely eliminate all security threats. Hackers and malware artists will always be looking for news ways to infiltrate and steal corporate information. But with a better understanding of the ways big data and machine learning can work together toward addressing this common problem, security breaches will be rarer and not as painful as those that have happened in recent years. A more secure future is definitely possible through machine learning.

More Stories By Gil Allouche

Gil Allouche is the Vice President of Marketing at Qubole. Most recently Sr. Director of Marketing for Karmasphere, a leading Big Data Analytics company offering SQL access to Apache Hadoop, where he managed all marketing functions, Gil brings a keen understanding of the Big Data target market and its technologies and buyers. Prior to Karmasphere, Gil was a product marketing manager and general manager for the TIBCO Silver Spotfire SaaS offering where he developed and executed go-to-market plans that increased growth by 600 percent in just 18 months. Gil also co-founded 1Yell, a social media ad network company. Gil began his marketing career as a product strategist at SAP while earning his MBA at Babson College and is a former software engineer.

Latest Stories
Predictive analytics tools monitor, report, and troubleshoot in order to make proactive decisions about the health, performance, and utilization of storage. Most enterprises combine cloud and on-premise storage, resulting in blended environments of physical, virtual, cloud, and other platforms, which justifies more sophisticated storage analytics. In his session at 18th Cloud Expo, Peter McCallum, Vice President of Datacenter Solutions at FalconStor, discussed using predictive analytics to mon...
Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more business becomes digital the more stakeholders are interested in this data including how it relates to business. Some of these people have never used a monitoring tool before. They have a question on their mind like “How is my application doing” but no id...
@GonzalezCarmen has been ranked the Number One Influencer and @ThingsExpo has been named the Number One Brand in the “M2M 2016: Top 100 Influencers and Brands” by Onalytica. Onalytica analyzed tweets over the last 6 months mentioning the keywords M2M OR “Machine to Machine.” They then identified the top 100 most influential brands and individuals leading the discussion on Twitter.
"We are an all-flash array storage provider but our focus has been on VM-aware storage specifically for virtualized applications," stated Dhiraj Sehgal of Tintri in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
As data explodes in quantity, importance and from new sources, the need for managing and protecting data residing across physical, virtual, and cloud environments grow with it. Managing data includes protecting it, indexing and classifying it for true, long-term management, compliance and E-Discovery. Commvault can ensure this with a single pane of glass solution – whether in a private cloud, a Service Provider delivered public cloud or a hybrid cloud environment – across the heterogeneous enter...
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
All clouds are not equal. To succeed in a DevOps context, organizations should plan to develop/deploy apps across a choice of on-premise and public clouds simultaneously depending on the business needs. This is where the concept of the Lean Cloud comes in - resting on the idea that you often need to relocate your app modules over their life cycles for both innovation and operational efficiency in the cloud. In his session at @DevOpsSummit at19th Cloud Expo, Valentin (Val) Bercovici, CTO of Soli...
"We're a cybersecurity firm that specializes in engineering security solutions both at the software and hardware level. Security cannot be an after-the-fact afterthought, which is what it's become," stated Richard Blech, Chief Executive Officer at Secure Channels, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
"IoT is going to be a huge industry with a lot of value for end users, for industries, for consumers, for manufacturers. How can we use cloud to effectively manage IoT applications," stated Ian Khan, Innovation & Marketing Manager at Solgeniakhela, in this SYS-CON.tv interview at @ThingsExpo, held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA.
Information technology is an industry that has always experienced change, and the dramatic change sweeping across the industry today could not be truthfully described as the first time we've seen such widespread change impacting customer investments. However, the rate of the change, and the potential outcomes from today's digital transformation has the distinct potential to separate the industry into two camps: Organizations that see the change coming, embrace it, and successful leverage it; and...
Join Impiger for their featured webinar: ‘Cloud Computing: A Roadmap to Modern Software Delivery’ on November 10, 2016, at 12:00 pm CST. Very few companies have not experienced some impact to their IT delivery due to the evolution of cloud computing. This webinar is not about deciding whether you should entertain moving some or all of your IT to the cloud, but rather, a detailed look under the hood to help IT professionals understand how cloud adoption has evolved and what trends will impact th...
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value. In his session at Cloud Expo, Ed Featherston, a director and senior enterprise architect at Collaborative Consulting, discussed the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.
We are always online. We access our data, our finances, work, and various services on the Internet. But we live in a congested world of information in which the roads were built two decades ago. The quest for better, faster Internet routing has been around for a decade, but nobody solved this problem. We’ve seen band-aid approaches like CDNs that attack a niche's slice of static content part of the Internet, but that’s it. It does not address the dynamic services-based Internet of today. It does...
Internet of @ThingsExpo, taking place June 6-8, 2017 at the Javits Center in New York City, New York, is co-located with the 20th International Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. @ThingsExpo New York Call for Papers is now open.
What happens when the different parts of a vehicle become smarter than the vehicle itself? As we move toward the era of smart everything, hundreds of entities in a vehicle that communicate with each other, the vehicle and external systems create a need for identity orchestration so that all entities work as a conglomerate. Much like an orchestra without a conductor, without the ability to secure, control, and connect the link between a vehicle’s head unit, devices, and systems and to manage the ...