PRO+ Premium Content/Information Security

Thank you for joining!

Access your Pro+ Content below.

August 2018, Vol. 20, No. 4

Overwhelmed by security data? Science to the rescue

This article is part of the Information Security issue of August 2018, Vol. 20, No. 4

When Charles Givre, lead data scientist at Deutsche Bank, teaches security teams about the benefits of applying security data science techniques, he often focuses on a common malware tactic: domain-generation algorithms. Used by malicious programs to establish contact with a command-and-control server, domain-generation algorithms, or DGAs, create a list of domain names as potential contact points using pseudo-random algorithms. The domains change often -- usually daily -- and can look random or use random words. For humans, finding a single computer's call to a random domain is a difficult problem. Yet data analysis can quickly call out the anomalous communications. "Machine learning and data science are being employed in the security realm to rapidly scan through massive data sets and find things based on previous patterns without a human having to tell the machine to do that," Givre said. "More organizations are collecting more data from their networks and systems, and it becomes a virtual impossibility to have a person ...

Access this PRO+ Content for Free!

You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login above.
Please provide a Corporate Email Address.
You forgot to provide your first name.
You forgot to provide your last name.
You forgot to provide a job title.
You forgot to provide a company name.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Features in this issue

Overwhelmed by security data? Science to the rescue
by Robert Lemos
Security teams increasingly use large data sets from their networks to find hidden threats. Why companies should embark on their own data science and machine learning initiatives.
Not enough information security analysts, despite higher wages
by Kathleen Richards
Survey data on global skills shortages does not show significant changes, even as companies turn to strategies such as security automation to make security teams more efficient.

Columns in this issue

Why third-party access to data may come at a price
by Kathleen Richards
Google and other platform companies dangled not only APIs but access to user data from unwitting customers to attract third-party developers and other partners.
Fannie Mae CISO calls for more data on security incidents
by Alan R. Earls
Chris Porter's years as a lead analyst and author of Verizon's Data Breach Investigations Report helped prepare him for the chief of security role at the primary housing lender.
Tom Van Vleck on the Multics operating system, security decisions
by Marcus J. Ranum
Time-sharing systems got a lot right from a security standpoint. "We aimed toward a completely lights-out, 'no chance for mistakes' interface," says the security researcher.

View Information Security Archives

Access your Pro+ Content below.

Overwhelmed by security data? Science to the rescue

Features in this issue

Overwhelmed by security data? Science to the rescue

Not enough information security analysts, despite higher wages

Columns in this issue

Why third-party access to data may come at a price

Fannie Mae CISO calls for more data on security incidents

Tom Van Vleck on the Multics operating system, security decisions