Friday, September 18, 2020

ESET – Machine learning and math can’t trump smart attackers

When fighting black-hat hackers for decades, we learn a thing or two about them. Obviously, they are bad, and they like to play with code. But most importantly, they’re continually learning and we need to keep up if we want to protect our customers’ businesses from their sticky fingers.

Now, if we were a post-truth security vendor, we would talk a lot about how our machine learning makes us fit for the fight, or how mathematics can predict an attacker’s every move. We would also try to downplay the fact that even advanced technologies can be fooled by adversaries.

But at ESET, we value the truth. No matter how smart a machine learning algorithm is, it has a narrow focus and learns from a specific data set. By contrast, attackers possess so-called general intelligence and are able to think outside of the box. They can learn from context and benefit from inspiration, which no machine or algorithm can predict.

Take self-driving cars as an example. These smart machines learn how to drive in an environment with road signs and pre-set rules.

But what if someone covers all the signs or manipulates them? Without such a vital component, the cars start to make wrong decisions that can end in a fatal crash, or simply immobilize the vehicle.

In cyberspace, malware writers specialize in such malicious behavior. They try to hide the true purpose of their code, by “covering” it with obfuscation or encryption. If the algorithm cannot look behind this mask, it can make a wrong decision, labeling a malicious item as clean – causing a potentially dangerous miss.

However, recognizing the mask doesn’t always reveal the code’s true nature, and without executing the sample there is no way of knowing what is under the hood. To do this ESET uses a simulated environment – known as sandboxing – deprecated by many of the post-truth vendors. They claim their technology can recognize malice simply by looking at a sample and doing the “math”.

How would that work in real life? Try and determine a house’s price just by looking at a picture of it. One can use some features, such as the number of windows or floors to get a rough estimate. But without knowing where the house is located, what is inside, and other details, there is a high probability of error.

On top of that, the mathematics itself contradicts these post-truth claims – by referring to what’s known as an “undecidable problem”, i.e. determining whether a program will behave maliciously according to its external appearance – as demonstrated by the computer scientist who formulated the definition of computer virus, Fred Cohen.

Moreover, in cybersecurity, some problems require so much computational capacity – or are so time-consuming – that even a machine learning algorithm would be ineffective in solving them – making them practically undecidable.

Now put all this information into an equation with a smart, dynamic opponent and the endpoints can end up infected.

ESET has considerable experience with intelligent adversaries and knows that machine learning alone is not enough to protect endpoints. We have been using this technology for years and have fine-tuned it to work with a variety of other layers of protection that are under the hood of our security solutions.

Moreover, our detection engineers and malware researchers constantly supervise “the machine” to avoid unnecessary errors along the way, ensuring that detection runs smoothly without bothering ESET business customers with false positives.

MOST READ

AI Ethics by Dr. Jassim Haji

There global agreement among modern Artificial Intelligence professionals that Artificial Intelligence falls short of human capabilities in some critical sense, even though AI algorithms...

stc Bahrain collaborates with INJAZ Bahrain to host a no. of virtual workshops

stc Bahrain, as a world-class digital enabler partnered with INJAZ Bahrain to host its Virtual Innovation Camp and Virtual Job Shadow workshops, in support...

Manage Your eVisa Requests Quickly and Easily on Bahrain.bh

Obtaining or renewing visas in the Kingdom of Bahrain is a relatively simple procedure. All you need to do is ensure that your documents...

stc Bahrain joins stc Group as the diamond sponsor of Virtual Capacity Middle East

stc Bahrain, a world-class digital enabler, joins stc group Kuwait and KSA as a Diamond sponsor of the virtual Capacity Middle East Conference 2020,...

CBB warns consumers when dealing with personal and banking information

The Central Bank of Bahrain (CBB) called on consumers to be cautious and vigilant when dealing with their personal and banking information. This warning came...

Virtual meeting by Rotary Club of Salmaniya

The Rotary Club of Salmaniya held its regular virtual meeting on Wednesday 2nd September 2020. The club was privileged enough to have internationally renowned...

Gulf Air resumes direct flights to India

Gulf Air, the national carrier of the Kingdom of Bahrain, announces that it will resume its direct flights to and from the Republic of...

“Virtual Bahrain 2020” conference, exhibition kicks off Tuesday

Under the patronage of Mohammed Ali Al Qaed, Chief Executive of the Information and eGovernment Authority, the "Virtual Bahrain 2020" conference and exhibition will...

‘AGU’ Appoints ‘Dr Ben-Salah’ As New Deputy Dean for Graduate Studies and Scientific Research

The Arabian Gulf University (AGU) President Dr Khalid bin Abdulrahman Al Ohaly recently appointed Family and Community Medicine Department Head Dr Afif Ben-Salah as...

HH Khalid bin Hamad congratulates ‘Your Talent at Home’ winners

First Deputy Chairman of the Supreme Council for Youth and Sport (SCYS) and President of Bahrain Olympic Committee (BOC) His Highness Shaikh Khalid bin...

Ebrahim K. Kanoo Hosts First INJAZ Bahrain Virtual Job Shadow Event

The Ebrahim K. Kanoo company has hosted the first ever INJAZ Bahrain Virtual Job Shadow event in Bahrain showcasing the different aspects of the...

Quick look at Nvidia’s new RTX 3080

Nvidia is promising big things with the GeForce RTX 3080 graphics card. “Twice the performance” of the RTX 2080 is perhaps the biggest claim...

HM King’s humanitarian initiatives lauded by Sudan’s foreign minister

Sudan’s Acting Foreign Minister Omar Qamar Al Din Ismail has praised the support of His Majesty the King to Sudan in various circumstances and...

Interior Minister: valid PCR certificates for entry to Bahrain via causeway

The Interior Minister General Shaikh Rashid bin Abdullah Al Khalifa said that Polymerase chain reaction (PCR) certificates accredited by the Saudi Health Ministry within 72...

Artificial Intelligence Academy launched at Bahrain Polytechnic

The Artificial Intelligence (AI) Academy of the Bahrain Technical College (Bahrain Polytechnic) launched the first batch of 38 students. This came under the directives of...