Welcome!

Related Topics: Cloud Security, Java IoT, Microservices Expo, Linux Containers, Agile Computing, SDN Journal

Cloud Security: Article

Security Threats Continue to Grow

How Big Data and Machine Learning Can Work Together to Solve Security Threats

They read like a list of horror stories for businesses big and small alike. Sony’s PlayStation Network is hacked twice, exposing the personal information of 77 million customers. Zappos becomes the victim of a hack that exposes the addresses and phone numbers of 24 million people. Up to 81 million Yahoo email customers’ passwords are compromised, forcing the company to tell its users to reset them immediately. 110 million customers are affected when hackers infiltrate Target, and PIN numbers and credit card information are stolen. But these stories of major security breaches aren’t works of fiction--they actually happened, and it’s a concern businesses all over the world live with. Many companies are now turning to big data and machine learning as a way to tackle these risks and make sure valuable data is protected at all times.

Dealing with IT security issues is certainly nothing new for businesses. Computer viruses, malware, worms, and other threats have been around for a while, forcing companies to come up with solutions to either eliminate them or minimize the damages they cause. Much of this approach has been reactive in nature, essentially identifying a new threat or tactic hackers are using and developing the means to fight it. Older security systems had to search through smaller clusters of data to identify patterns that might indicate an attack, but the systems required significant resources and time to work, and even then their success rate was hit-and-miss. Systems were usually finding themselves being left behind by would-be attackers, forced to play catch-up in a game with a lot at stake.

With the growth of big data, data security has become even more complex and difficult to manage. More and more data is being created around the world, and trying to sort through all of it to identify security risks would tax older systems immensely. With new solutions desperately needed, many experts turned to machine learning. In simple terms, machine learning is a system that performs certain tasks by continuously learning from data without the need for specific programming. Machine learning can be used to detect security threats by sorting through all that data, something that simply wasn’t possible to that extent several years ago. Unlike traditional systems, which can get bogged down the more data they have to sort through, machine learning can actually get better if more data is added.

The way machine learning is able to detect security threats is by going through the data and identifying the signs and code that point to potential risks. This in turn creates a profile of what to look for, allowing machine learning and security systems to be able to predict and act on threats before they even happen. Essentially, machine learning can be used for security in much the same way it is used for advertising and marketing, targeting certain features it has determined through pattern recognition and using behavioral analytics to make more accurate predictions. This analysis is not only able to capture the hard data involved in security risks, it captures the context of risky events and can connect the relationships of those events to better understand just how threatening the risk actually is. This entire process takes less time than traditional systems and does not slow down productivity.

Threat detection through machine learning and big data was once out of reach for smaller businesses due to cost concerns and personnel requirements, but as these technologies have matured, smaller operations are now getting more access through big data cloud technology. The advances in recent years makes the utilization of machine learning possible for smaller security teams. In fact, security threat detection through machine learning is more of a hands-off process since machine learning systems undergo training on their own. The system is always learning, populating training sets to always get better at detecting security risks, even if they are new. The processing power and storage capabilities needed for machine learning are also within reach for small businesses thanks to advances in flash storage. The growing adaptability for companies makes security more robust and predictive instead of reactive.

There will never be a way to completely eliminate all security threats. Hackers and malware artists will always be looking for news ways to infiltrate and steal corporate information. But with a better understanding of the ways big data and machine learning can work together toward addressing this common problem, security breaches will be rarer and not as painful as those that have happened in recent years. A more secure future is definitely possible through machine learning.

More Stories By Gil Allouche

Gil Allouche is the Vice President of Marketing at Qubole. Most recently Sr. Director of Marketing for Karmasphere, a leading Big Data Analytics company offering SQL access to Apache Hadoop, where he managed all marketing functions, Gil brings a keen understanding of the Big Data target market and its technologies and buyers. Prior to Karmasphere, Gil was a product marketing manager and general manager for the TIBCO Silver Spotfire SaaS offering where he developed and executed go-to-market plans that increased growth by 600 percent in just 18 months. Gil also co-founded 1Yell, a social media ad network company. Gil began his marketing career as a product strategist at SAP while earning his MBA at Babson College and is a former software engineer.

Latest Stories
"I think that everyone recognizes that for IoT to really realize its full potential and value that it is about creating ecosystems and marketplaces and that no single vendor is able to support what is required," explained Esmeralda Swartz, VP, Marketing Enterprise and Cloud at Ericsson, in this SYS-CON.tv interview at @ThingsExpo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Most companies are adopting or evaluating container technology - Docker in particular - to speed up application deployment, drive down cost, ease management and make application delivery more flexible overall. As with most new architectures, this dream takes a lot of work to become a reality. Even when you do get your application componentized enough and packaged properly, there are still challenges for DevOps teams to making the shift to continuous delivery and achieving that reduction in cost ...
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
After more than five years of DevOps, definitions are evolving, boundaries are expanding, ‘unicorns’ are no longer rare, enterprises are on board, and pundits are moving on. Can we now look at an evolution of DevOps? Should we? Is the foundation of DevOps ‘done’, or is there still too much left to do? What is mature, and what is still missing? What does the next 5 years of DevOps look like? In this Power Panel at DevOps Summit, moderated by DevOps Summit Conference Chair Andi Mann, panelists l...
Virtualization over the past years has become a key strategy for IT to acquire multi-tenancy, increase utilization, develop elasticity and improve security. And virtual machines (VMs) are quickly becoming a main vehicle for developing and deploying applications. The introduction of containers seems to be bringing another and perhaps overlapped solution for achieving the same above-mentioned benefits. Are a container and a virtual machine fundamentally the same or different? And how? Is one techn...
My team embarked on building a data lake for our sales and marketing data to better understand customer journeys. This required building a hybrid data pipeline to connect our cloud CRM with the new Hadoop Data Lake. One challenge is that IT was not in a position to provide support until we proved value and marketing did not have the experience, so we embarked on the journey ourselves within the product marketing team for our line of business within Progress. In his session at @BigDataExpo, Sum...
MongoDB Atlas leverages VPC peering for AWS, a service that allows multiple VPC networks to interact. This includes VPCs that belong to other AWS account holders. By performing cross account VPC peering, users ensure networks that host and communicate their data are secure. In his session at 20th Cloud Expo, Jay Gordon, a Developer Advocate at MongoDB, will explain how to properly architect your VPC using existing AWS tools and then peer with your MongoDB Atlas cluster. He'll discuss the secur...
Keeping pace with advancements in software delivery processes and tooling is taxing even for the most proficient organizations. Point tools, platforms, open source and the increasing adoption of private and public cloud services requires strong engineering rigor - all in the face of developer demands to use the tools of choice. As Agile has settled in as a mainstream practice, now DevOps has emerged as the next wave to improve software delivery speed and output. To make DevOps work, organization...
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service.
Niagara Networks exhibited at the 19th International Cloud Expo, which took place at the Santa Clara Convention Center in Santa Clara, CA, in November 2016. Niagara Networks offers the highest port-density systems, and the most complete Next-Generation Network Visibility systems including Network Packet Brokers, Bypass Switches, and Network TAPs.
SYS-CON Events announced today that MobiDev, a client-oriented software development company, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place June 6-8, 2017, at the Javits Center in New York City, NY, and the 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. MobiDev is a software company that develops and delivers turn-key mobile apps, websites, web services, and complex softw...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
What sort of WebRTC based applications can we expect to see over the next year and beyond? One way to predict development trends is to see what sorts of applications startups are building. In his session at @ThingsExpo, Arin Sime, founder of WebRTC.ventures, will discuss the current and likely future trends in WebRTC application development based on real requests for custom applications from real customers, as well as other public sources of information,
DevOps tends to focus on the relationship between Dev and Ops, putting an emphasis on the ops and application infrastructure. But that’s changing with microservices architectures. In her session at DevOps Summit, Lori MacVittie, Evangelist for F5 Networks, will focus on how microservices are changing the underlying architectures needed to scale, secure and deliver applications based on highly distributed (micro) services and why that means an expansion into “the network” for DevOps.
In his session at Cloud Expo, Alan Winters, an entertainment executive/TV producer turned serial entrepreneur, will present a success story of an entrepreneur who has both suffered through and benefited from offshore development across multiple businesses: The smart choice, or how to select the right offshore development partner Warning signs, or how to minimize chances of making the wrong choice Collaboration, or how to establish the most effective work processes Budget control, or how to max...