<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Machine learning - RiskInsight</title>
	<atom:link href="https://www.riskinsight-wavestone.com/en/tag/machine-learning-en/feed/" rel="self" type="application/rss+xml" />
	<link>https://www.riskinsight-wavestone.com/en/tag/machine-learning-en/</link>
	<description>The cybersecurity &#38; digital trust blog by Wavestone&#039;s consultants</description>
	<lastBuildDate>Wed, 21 May 2025 14:37:10 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	

<image>
	<url>https://www.riskinsight-wavestone.com/wp-content/uploads/2024/02/Blogs-2024_RI-39x39.png</url>
	<title>Machine learning - RiskInsight</title>
	<link>https://www.riskinsight-wavestone.com/en/tag/machine-learning-en/</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Leaking Minds: How Your Data Could Slip Through AI Chatbots </title>
		<link>https://www.riskinsight-wavestone.com/en/2025/05/leaking-minds-how-your-data-could-slip-through-ai-chatbots/</link>
					<comments>https://www.riskinsight-wavestone.com/en/2025/05/leaking-minds-how-your-data-could-slip-through-ai-chatbots/#respond</comments>
		
		<dc:creator><![CDATA[Jeanne PIGASSOU]]></dc:creator>
		<pubDate>Wed, 21 May 2025 14:21:32 +0000</pubDate>
				<category><![CDATA[Cloud & Next-Gen IT Security]]></category>
		<category><![CDATA[Focus]]></category>
		<category><![CDATA[AI]]></category>
		<category><![CDATA[Chatbots]]></category>
		<category><![CDATA[cybersecurity]]></category>
		<category><![CDATA[data protection]]></category>
		<category><![CDATA[genai]]></category>
		<category><![CDATA[LLM]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[risk]]></category>
		<category><![CDATA[Vulnerabilities]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=26043</guid>

					<description><![CDATA[<p>OpenAI’s flagship ChatGPT was over the news 18 months ago for accidentally leaking a CEO’s personal information after being asked to repeat a word forever. This is among the many  exploits that have been discovered in recent months.   Figure 1...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2025/05/leaking-minds-how-your-data-could-slip-through-ai-chatbots/">Leaking Minds: How Your Data Could Slip Through AI Chatbots </a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p style="text-align: justify;"><span data-contrast="auto">OpenAI’s flagship ChatGPT was over the news 18 months ago for accidentally leaking a CEO’s personal information after being asked to repeat a word forever. This is among the many  exploits that have been discovered in recent months. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p><img fetchpriority="high" decoding="async" class="aligncenter wp-image-26024 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2025/05/Diapositive1-e1747818653646.jpg" alt="Example of the PII Leaking exploit found in ChatGPT in December 2023" width="1280" height="720" /></p>
<p style="text-align: center;"><em>Figure 1 : Example of the Leaking exploit found in ChatGPT in December </em></p>
<p> </p>
<p style="text-align: justify;"><span data-contrast="auto">Scandals like these highlight a deeper truth: the core architecture of Large Language Models (LLMs) such as GPT and Google’s Gemini is inherently prone to data leakage. This leakage can involve Personally Identifiable Information (PII) or confidential company data. The techniques used by attackers will continue to evolve in response to improved defenses from tech giants, the underlying vectors remain unchanged.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Today, three main vectors exist through which PIIs (Personally Identifiable Information) or sensitive data might be exposed to such attacks: </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul>
<li><span data-contrast="auto">The use of publicly available web content in training datasets</span><span data-ccp-props="{&quot;335551550&quot;:1,&quot;335551620&quot;:1}"> </span></li>
<li><span data-contrast="auto">The continuous re-training of models using user prompts and conversations</span><span data-ccp-props="{&quot;335551550&quot;:1,&quot;335551620&quot;:1}"> </span></li>
<li><span data-contrast="auto">The introduction of persistent memory features in chatbots</span> <br /><span data-ccp-props="{&quot;335551550&quot;:1,&quot;335551620&quot;:1}"> </span></li>
</ul>
<h2 style="text-align: justify;"><b><span data-contrast="none">LLM Pre-Training Data Leakage </span></b><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></h2>
<p style="text-align: justify;"> </p>
<p style="text-align: justify;"><span data-contrast="auto">Most models available right now are transformer models, specifically GPTs or Generative Pre-Trained Transformers. The Pre-Trained in GPT refers to the initial training phase, where the model is exposed to a massive, diverse corpus of data unrelated to its final application. This helps the model learn foundational knowledge such as grammar, vocabulary, and factual information. When GPTs were first released, companies were transparent on where this training data came from, but currently the largest models on the web have datasets that are too large and too diverse and are often kept confidential. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">A major source of the data used in GPT pre-training are online forums such as Reddit (for Google’s models), Stack Overflow, and other social media platforms. This poses a significant risk since these social media forums often contain PIIs . Although companies claim to filter out PII during training, there have been many instances where LLMs have leaked personal data from their pre-training data corpus to users after some prompt engineering and jail breaking. This danger will become ever more present as companies race to gather more data through web scraping to train larger and more sophisticated models. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Known leaks of this type are mostly uncovered by researchers who develop more and more creative methods to bypass the defenses of chatbots. The example mentioned earlier is one such case. By prompting the chatbot to repeat forever a word, it &#8220;forgets&#8221; its task and begins to exhibit a behavior known as memorization. In this state, the chatbot regurgitates data from its training set. While this attack has been patched, new prompt techniques continue to be found to change the behavior of the chatbot.</span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<h2 style="text-align: justify;"><b><span data-contrast="none">User Input Re-Usage and Re-Training </span></b><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></h2>
<p style="text-align: justify;"> </p>
<p style="text-align: justify;"><span data-contrast="auto">User Inputs re-training is the process of continuously improving the LLM by training it on user inputs. This can be done in several ways, the most popular of which is RLHF or Reinforcement Learning from Human Feedback.  </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: center;"><img decoding="async" class="wp-image-26026 size-full aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2025/05/Diapositive2-e1747818997148.jpg" alt="The feedback button used for RHLF in chatGPT" width="1280" height="720" /><em>Figure 3 : The feedback buttons used for RLHF in ChatGPT </em></p>
<p> </p>
<p style="text-align: justify;"><span data-contrast="auto">This method is built on top of collecting user feedback on the LLM’s output. Many users of LLMs might have seen the “Thumbs Up” or “Thumbs Down” buttons in ChatGPT or other LLM platforms. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">These buttons collect feedback from the user and use the feedback to re-train the model. If the user signifies the response as positive, the platform takes the user input / model output pair and encourages the model to replicate the behavior. Similarly, if the user indicates that the model performed poorly, the user input / model output pair will be used to discourage the model from replicating the behavior. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">However, continuous re-training can also occur without any user interaction. Models may occasionally use user input / model output to re-train in seemingly random ways. The lack of transparency from model providers and developers makes it difficult to pinpoint exactly how this happens. However, many users across the internet have reported models gaining new knowledge through re-training from other users’ chats all the way back to 2022. For example, OpenAI’s GPT 3.5 should not be able to know any information after Sept 2021, its cut-off date. Yet, asking it about recent information such as Elon Musk’s new position as CEO of Twitter (now X) will provide you with a different reality as it confidently answers your question with accuracy.  </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Essentially, what this means for end-users is that their chats are not kept confidential at all and any information given to the LLM through internal documents, meeting minutes or development codebases may show up in the chats of other users thus leaking it. This poses significant privacy risks not only for individuals but also for companies, many of which have already taken action, like Samsung. In April 2023, Samsung banned the use of ChatGPT and similar chatbots after a group of employees used the tool for coding assistance and summarizing meeting notes. Although Samsung has no concrete evidence that the data was used by OpenAI, the potential risk was deemed too high to allow employees to continue using the tool. This is a classic example of Shadow AI, where unauthorized use of AI tools leads to the possible leakage of confidential or proprietary information.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Many companies globally are waiting for stricter AI and data regulations before using LLMs for commercial use. We are seeing certain industries such as consulting open up but at an incredibly slow pace. Other companies, however, are tightening their control over internal LLM use to avoid leaking confidential data and client information. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"> </p>
<h2 style="text-align: justify;"><b><span data-contrast="none">Memory Persistence</span></b><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></h2>
<p style="text-align: justify;"> </p>
<p style="text-align: justify;"><span data-contrast="auto">While the two precedent risks have been recognized to exist for a few years, a new threat has emerged with the introduction of a feature by ChatGPT in September 2024. This feature enables the model to retain long-term memory of user conversations. The idea is to reduce redundancy by allowing the chatbot to remember user preferences, context, and previous interactions, thereby improving the relevance and personalization of responses. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">However, this convenience comes at a significant security cost. Unlike earlier cases, where leaked information was more or less random, persistent memory introduces account-level targeting. Now, attackers could potentially exploit this memory to extract specific details from a particular user’s history, significantly raising the stakes.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Security researcher Johannes Rehberger demonstrated how this vulnerability could be exploited through a technique known as context poisoning. In his proof-of-concept, he crafted a site with a malicious image containing instructions. Once the targeted chatbot views the URL, its persistent memory is poisoned. This covert instruction allows the chatbot to be manipulated into extracting sensitive information from the victim’s conversation history and transmitting it to an external URL.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">This attack is particularly dangerous because it combines persistence and stealth. Once it infiltrates the chatbot, it remains active indefinitely, continuously exfiltrating user data until the memory is cleaned. At the same time, it is subtle enough to go unnoticed, requiring careful human analysis of the memory to be detected.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559685&quot;:0}"> </span></p>
<h2 style="text-align: justify;"><b><span data-contrast="none">LLM Data Privacy and Mitigation </span></b><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></h2>
<p> </p>
<p style="text-align: justify;"><span data-contrast="auto">LLM developers often intentionally make it hard to disable re-training since it benefits their LLM development. If your personal information is already out in public, it has probably been scraped and used for pre-training an LLM. Additionally, if you gave ChatGPT or another LLM a confidential document in your prompt (without manually turning re-training OFF), it has most probably been used for re-training. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Currently, there is no reliable technique that allows an individual to request the deletion of their data once it has been used for model training. Addressing this challenge is the goal of an emerging research area known as Machine Unlearning. This field focuses on developing methods to selectively remove the influence of specific data points from a trained model, thus deleting those data from the memory of the model. The field is evolving rapidly, particularly in response to GDPR regulations that enforce the right to erasure. For this reason, it is important to mitigate and minimize these risks in the future by controlling what data individuals and organizations put out on the internet and what information employees add to their prompts. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">It is vital for many business operations to stay confidential. However, the productivity boost that LLMs add to employee workflows cannot be overlooked. For this reason, we constructed a 3-step framework to ensure that organizations can harness the power of LLMs without losing control over their data. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p> </p>
<h3 style="text-align: justify;"><strong>Choose the most optimal model, environment and configuration  </strong></h3>
<p style="text-align: justify;"><span data-contrast="auto">Ensure that the environment and model you are using are well-secured. Check over the model’s data retention period and the provider’s policy on re-training on user conversations. Ensure that you have “Auto-delete” as ON when available and “Chat History” to OFF.  </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">At Wavestone we made a </span><a href="https://digiplace.sharepoint.com/:x:/s/WOOHK-HONGKONGOFFICE/EcyjrooJw_hPlkQBjpuYod4Brkuf8-pVV1uKtb5ejJfQLQ?e=i7KITB"><span data-contrast="none">tool</span></a><span data-contrast="auto"> that compares the top 3 closed-source and open-source models in terms of pricing, data retention period, guard rails, and confidentiality to empower organizations in their AI journey. </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<h3 style="text-align: justify;"><strong>Raise employee awareness on best practices when using LLMs  </strong></h3>
<p style="text-align: justify;"><span data-contrast="auto">Ensure that your employees know the danger of providing confidential and client information to LLMs and what they can do to minimize including corporate or personal information in an LLM’s pre-training and re-training data corpus. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p> </p>
<h3 style="text-align: justify;"><strong>Implement a robust AI policy   </strong></h3>
<p style="text-align: justify;"><span data-contrast="auto">Forward-looking companies should implement a robust internal AI policy that specifies: </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul style="text-align: justify;">
<li><span data-contrast="auto">What information can and can’t be shared with LLMs internally </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
<li><span data-contrast="auto">Monitoring of AI behavior </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
<li><span data-contrast="auto">Limiting their online presence </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
<li><span data-contrast="auto">Anonymization of prompt data </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
<li><span data-contrast="auto">Limiting use to secure AI tools only </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p style="text-align: justify;"><span data-contrast="auto">Following these steps, organizations can minimize the digital risk they face by using the latest GenAI tools while also benefiting from their productivity increases. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"> </p>
<h2 style="text-align: justify;"><b><span data-contrast="none">Moving Forward </span></b><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></h2>
<p style="text-align: justify;"> </p>
<p style="text-align: justify;"><span data-contrast="auto">Although the data privacy vulnerabilities mentioned in this article impact individuals like you and me, their cause is the LLM developers’ greed for data. This greed produces higher-quality end products but at the cost of data privacy and autonomy. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">New regulations and technologies have come out to combat this issue such as the EU AI Act and OWASP top 10 LLM checklist. However, relying solely on responsible governance is not enough. Individuals and organizations must actively recognize the critical role PIIs play in today&#8217;s digital landscape and take proactive steps to protect them. This is especially important as we move toward more agentic AI systems, which autonomously interact with multiple third-party services. Not only will these systems process an increasing amount of personal and sensitive data, but this data will also be transmitted and handled by numerous different services, complicating oversight and control.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"> </p>
<h2 style="text-align: justify;"><span class="TextRun SCXW172884042 BCX8" lang="EN-US" xml:lang="EN-US" data-contrast="auto"><span class="NormalTextRun SCXW172884042 BCX8">References and Further Reading </span></span><span class="EOP SCXW172884042 BCX8" data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></h2>
<p style="text-align: justify;"> </p>
<p style="text-align: justify;">[1] D. Goodin, “OpenAI says mysterious chat histories resulted from account takeover,” Ars Technica, https://arstechnica.com/security/2024/01/ars-reader-reports-chatgpt-is-sending-him-conversations-from-unrelated-ai-users/ (accessed Jul. 13, 2024). </p>
<p style="text-align: justify;">[2] M. Nasr et al., “Extracting Training Data from ChatGPT,” not-just-memorization , Nov. 28, 2023. Available: <a href="https://not-just-memorization.github.io/extracting-training-data-from-chatgpt.html">https://not-just-memorization.github.io/extracting-training-data-from-chatgpt.html</a> </p>
<p style="text-align: justify;">[3] “What Is Confidential Computing? Defined and Explained,” Fortinet. Available: <a href="https://www.fortinet.com/resources/cyberglossary/confidential-computing#:~:text=Confidential%20computing%20refers%20to%20cloud">https://www.fortinet.com/resources/cyberglossary/confidential-computing#:~:text=Confidential%20computing%20refers%20to%20cloud</a> </p>
<p style="text-align: justify;">[4] S. Wilson, “OWASP Top 10 for Large Language Model Applications | OWASP Foundation,” owasp.org, Oct. 18, 2023. Available: <a href="https://owasp.org/www-project-top-10-for-large-language-model-applications/">https://owasp.org/www-project-top-10-for-large-language-model-applications/</a> </p>
<p style="text-align: justify;">[5] “Explaining the Einstein Trust Layer,” Salesforce. Available: https://www.salesforce.com/news/stories/video/explaining-the-einstein-gpt-trust-layer/ </p>
<p style="text-align: justify;">[6] “Hacker plants false memories in ChatGPT to steal user data in perpetuity” Ars Technica , 24 sept. 2024 Available: <a href="https://arstechnica.com/security/2024/09/false-memories-planted-in-chatgpt-give-hacker-persistent-exfiltration-channel/">https://arstechnica.com/security/2024/09/false-memories-planted-in-chatgpt-give-hacker-persistent-exfiltration-channel/</a></p>
<p style="text-align: justify;">[7] “Why we’re teaching LLMs to forget things” IBM, 07 Oct 2024 Available: https://research.ibm.com/blog/llm-unlearning</p>
<p style="text-align: justify;"> </p>


<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2025/05/leaking-minds-how-your-data-could-slip-through-ai-chatbots/">Leaking Minds: How Your Data Could Slip Through AI Chatbots </a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
					<wfw:commentRss>https://www.riskinsight-wavestone.com/en/2025/05/leaking-minds-how-your-data-could-slip-through-ai-chatbots/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
			</item>
		<item>
		<title>Adopting MLSecOps: the key to reliable and secure AI models </title>
		<link>https://www.riskinsight-wavestone.com/en/2024/10/adopting-mlsecops-the-key-to-reliable-and-secure-ai-models/</link>
					<comments>https://www.riskinsight-wavestone.com/en/2024/10/adopting-mlsecops-the-key-to-reliable-and-secure-ai-models/#respond</comments>
		
		<dc:creator><![CDATA[Pierre Aubret]]></dc:creator>
		<pubDate>Fri, 25 Oct 2024 14:57:34 +0000</pubDate>
				<category><![CDATA[Focus]]></category>
		<category><![CDATA[artificial intelligence]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[mlops]]></category>
		<category><![CDATA[mlsecops]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=24319</guid>

					<description><![CDATA[<p>Artificial intelligence (AI) now occupies a central place in the products and services offered by businesses and public services, largely thanks to the rise of generative AI. To support this growth and encourage the adoption of AI, it has been...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2024/10/adopting-mlsecops-the-key-to-reliable-and-secure-ai-models/">Adopting MLSecOps: the key to reliable and secure AI models </a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[
<p style="text-align: justify;"><span data-contrast="auto">Artificial intelligence (AI) now occupies a central place in the products and services offered by businesses and public services, largely thanks to the rise of generative AI. To support this growth and encourage the adoption of AI, it has been necessary </span><b><span data-contrast="auto">to industrialize the design of AI systems </span></b><span data-contrast="auto">by adapting model development methods and procedures.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">This gave rise to </span><b><span data-contrast="auto">MLOps</span></b><span data-contrast="auto">, a contraction of &#8220;Machine Learning&#8221; (the heart of AI systems) and &#8220;Operations&#8221;. Like DevOps, MLOps facilitates the success of Machine Learning projects while ensuring the production of high-performance models.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">However, it is crucial to guarantee the security of the algorithms so that they remain efficient and reliable over time. To achieve this, it is necessary to </span><b><span data-contrast="auto">evolve from MLOps to MLSecOps</span></b><span data-contrast="auto">, by integrating security into processes in the same way as DevSecOps. </span><b><span data-contrast="auto">Few organisations have adopted and deployed a complete MLSecOps process</span></b><span data-contrast="auto">. In this article, we explore in detail the form that MLSecOps could take.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{}"> </span></p>
<h2 style="text-align: justify;"><span data-contrast="none">MLOps, the fundamentals of AI model development</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:360,&quot;335559739&quot;:80}"> </span></h2>
<h3 style="text-align: justify;"><span data-contrast="none">Closer links with DevOps</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">DevOps is an approach that combines software development (Dev) and IT operations (Ops). Its aim is to shorten the development lifecycle while ensuring continuous high-quality delivery. Key principles include process automation (development, testing and release), continuous delivery (CI/CD) and fast feedback loops.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">MLOps is an extension of DevOps principles applied specifically to Machine Learning (ML) projects. Workflows are simplified and automated as far as possible, from the preparation of training data to the management of models in production. </span><span data-contrast="auto">MLOps differs from DevOps in several ways:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="20" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><b><span data-contrast="auto">Importance of data and models</span></b><span data-contrast="auto">: In Machine Learning, data, and models are crucial. MLOps goes a step further by automating all the stages of Machine Learning, from data preparation to the training phases. What&#8217;s more, a larger volume of data is often used in Machine Learning projects.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="20" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><b><span data-contrast="auto">Experimental nature of development</span></b><span data-contrast="auto">: Development in Machine Learning is experimental and involves continually testing and adjusting models to find the best algorithms, parameters and relevant data for learning. This poses challenges for adapting DevOps to Machine Learning, as DevOps focuses on process automation and stability.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="20" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="3" data-aria-level="1"><b><span data-contrast="auto">Complexity of testing and acceptance</span></b><span data-contrast="auto">: The evolving nature of the models and the complexity of the data make the testing and acceptance phases more delicate in Machine Learning. What&#8217;s more, performance monitoring is essential to ensure that the models work properly in production. In Machine Learning, therefore, it is necessary to adapt the Operational Maintenance procedures to maintain the stability and reliability of the systems.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p style="text-align: justify;"><span data-contrast="auto">In short, an MLOps chain shares common elements with a DevOps chain although introduces additional steps and places particular importance on the management and use of data. The following graph highlights in yellow all the additional steps that MLOps introduces:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="21" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><b><span data-contrast="auto">Data access and use</span></b><span data-contrast="auto">: This stage includes all the data engineering phases (collection, transformation and versioning of the data used for training). The challenge is to ensure the integrity of the data and the reproducibility of the tests.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="21" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><b><span data-contrast="auto">Model acceptance</span></b><span data-contrast="auto">: ML acceptance and integration tests are more complex and take place at three different layers: the data pipeline, the ML model pipeline and the application pipeline.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="21" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="3" data-aria-level="1"><b><span data-contrast="auto">Production monitoring</span></b><span data-contrast="auto">: This involves guaranteeing the model&#8217;s performance over time and avoiding &#8220;model drifting&#8221; (decline in performance over time). To achieve this, all deviations (instantaneous change, gradual change, recurring change) must be detected, analyzed, and corrected if necessary.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> <img decoding="async" class="aligncenter wp-image-24325 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/1-1.jpg" alt="" width="1391" height="689" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/1-1.jpg 1391w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/1-1-386x191.jpg 386w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/1-1-71x35.jpg 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/1-1-768x380.jpg 768w" sizes="(max-width: 1391px) 100vw, 1391px" /></span></p>
<p style="text-align: center;"><span data-ccp-props="{&quot;134245418&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span><i><span data-contrast="none">Figure </span></i><i><span data-contrast="none">1</span></i><i><span data-contrast="none"> &#8211; Adapting the DevOps stages to Machine Learning</span></i><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559739&quot;:200,&quot;335559740&quot;:240}"> </span></p>
<h3> </h3>
<h3 style="text-align: justify;"><span data-contrast="none">Implementing MLOps requires creating a dialogue between data engineers and DevOps operators</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">Moving to MLOps means </span><b><span data-contrast="auto">creating new organizational steps </span></b><span data-contrast="auto">specifically adapted to data management. This includes the collection and transformation of training data, as well as the processes for tracking the different versions of the data. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559731&quot;:360}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">In this sense, collaboration between MLOps experts, data scientists and data engineers is essential for success in this constantly evolving field. The main challenge in setting up an MLOps chain therefore lies in integrating the data engineers into the DevOps processes. They are responsible for preparing the data that MLOps engineers need to train and execute models. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p> </p>
<h3>And what about safety? </h3>
<p style="text-align: justify;"><span data-contrast="auto">The massive adoption of generative AI in 2024 has provided us with a variety of examples of security term compromises. Indeed, the attack surface is large: a malicious actor can both </span><b><span data-contrast="auto">attack the model </span></b><span data-contrast="auto">itself (model theft, model reconstruction, diversion from initial use) </span><b><span data-contrast="auto">but also attack its data </span></b><span data-contrast="auto">(extracting training data, modifying behaviour by adding false data, etc.). To illustrate the latter, we have simulated two realistic attacks in previous articles: </span><a href="https://www.riskinsight-wavestone.com/en/2023/06/attacking-ai-a-real-life-example/"><span data-contrast="none">Attacking an AI? A concrete example!</span></a><span data-contrast="auto"> or </span><a href="https://www.riskinsight-wavestone.com/en/2023/10/language-as-a-sword-the-risk-of-prompt-injection-on-ai-generative/"><span data-contrast="none">When words become weapons: prompt injection</span></a><span data-contrast="auto">.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">At the same time, MLOps introduces automation, which speeds up production. While this may reduce time</span><i><span data-contrast="auto"> to market</span></i><span data-contrast="auto">, it also increases the risks (supply chain attacks, massaction). It is therefore crucial to ensure that the risks associated with cybersecurity and AI are properly managed.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">As DevSecOps does for DevOps, the MLOps production chain must be secure. Here is an overview of the main risks in the MLOps chain:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> <img loading="lazy" decoding="async" class="aligncenter wp-image-24327 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/2-1.jpg" alt="" width="1250" height="652" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/2-1.jpg 1250w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/2-1-366x191.jpg 366w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/2-1-71x37.jpg 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/2-1-768x401.jpg 768w" sizes="auto, (max-width: 1250px) 100vw, 1250px" /></span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<h2><span data-contrast="none">Adopt MLSECOPS</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:360,&quot;335559739&quot;:80}"> </span></h2>
<h3><span data-contrast="none">Integrating safety into MLOPS teams and strengthening the safety culture</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">The principles of MLSecOps need to be understood by data scientists and data engineers. To achieve this, it is crucial that the security teams are involved from the outset of the project. </span><span data-contrast="auto">This can be done in two ways:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="22" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">When a new project is created, a member of the security team is assigned as the security manager. He or she supervises progress and answers questions from the project teams.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="22" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><span data-contrast="auto">A more agile approach, similar to DevSecOps, involves designating a member of the team as the &#8220;</span><b><span data-contrast="auto">Security Champion</span></b><span data-contrast="auto">&#8220;. This cybersecurity referent within the project team becomes the main point of contact for the cyber teams. This method enables security to be integrated more realistically into the project but requires appropriate training for the Security Champion.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p style="text-align: justify;"><span data-contrast="auto">For this change to be effective, it is also necessary to change the way project teams perceive cybersecurity:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="23" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">By providing basic training to teams to help them better understand the challenges of cyber security.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="23" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><span data-contrast="auto">By integrating cyber security into collaboration and knowledge platforms.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="23" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="3" data-aria-level="1"><span data-contrast="auto">By organising regular awareness campaigns.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<h3><span data-contrast="none">Securing MLOPS chain tools</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">To guarantee product security, it is essential to secure the production chain. In the context of MLOps, this means ensuring that all the tools are used correctly, with practices that incorporate cybersecurity, whether they be </span><b><span data-contrast="auto">data processing and management tools </span></b><span data-contrast="auto">(such as MongoDB, SQL, etc.), </span><b><span data-contrast="auto">monitoring tools </span></b><span data-contrast="auto">(such as Prometheus), or more or less specific </span><b><span data-contrast="auto">development tools </span></b><span data-contrast="auto">(such as MLFlow or GitHub).</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">For example, it is crucial that teams remain vigilant on issues such as identification and identity management, business continuity, monitoring and data management. The possibilities offered by the various tools used throughout the lifecycle, and their specific features, must be examined in relation to these issues. Ideally, cybersecurity features should be used as selection criteria when choosing the most suitable tool.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<h3><span data-contrast="none">Defining AI security practices</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">In addition to the security of the tools used to build AI systems, security measures must be incorporated to prevent vulnerabilities specific to AI systems. These measures must be incorporated right from the design stage and throughout the application&#8217;s lifecycle, following an MLSecOps approach. From data collection to system monitoring, there are numerous security measures to incorporate:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;134245418&quot;:true,&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> <img loading="lazy" decoding="async" class="aligncenter wp-image-24329 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/3-1.jpg" alt="" width="1135" height="510" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/3-1.jpg 1135w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/3-1-425x191.jpg 425w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/3-1-71x32.jpg 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/3-1-768x345.jpg 768w" sizes="auto, (max-width: 1135px) 100vw, 1135px" /></span></p>
<p style="text-align: center;"><i><span data-contrast="none">Figure </span></i><i><span data-contrast="none">2</span></i><i><span data-contrast="none"> &#8211; Securing the MLOps lifecycle</span></i><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559739&quot;:200,&quot;335559740&quot;:240}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{}"> </span></p>
<h2><span data-contrast="none">Three security measures to implement in your MLSecOps processes</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:360,&quot;335559739&quot;:80}"> </span></h2>
<p style="text-align: justify;"><span data-contrast="auto">Depending on the security strategy adopted, various security measures can be integrated throughout the MLOps lifecycle. We have detailed the main defence mechanisms for securing AI in the following article: </span><a href="https://www.riskinsight-wavestone.com/en/2024/03/securing-ai-the-new-cybersecurity-challenges/"><span data-contrast="none">Securing AI: The New Cybersecurity Challenges</span></a><span data-contrast="auto">. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">In this section, we will focus on 3 specific measures that can be implemented to enhance the security of MLOps:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;134245418&quot;:true}"> <img loading="lazy" decoding="async" class="aligncenter wp-image-24331 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/4-1.jpg" alt="" width="1100" height="546" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/4-1.jpg 1100w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/4-1-385x191.jpg 385w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/4-1-71x35.jpg 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2024/10/4-1-768x381.jpg 768w" sizes="auto, (max-width: 1100px) 100vw, 1100px" /></span></p>
<p style="text-align: center;"><i><span data-contrast="none">Figure </span></i><i><span data-contrast="none">3</span></i><i><span data-contrast="none"> &#8211; Selected security measures</span></i><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335551550&quot;:2,&quot;335551620&quot;:2,&quot;335559739&quot;:200,&quot;335559740&quot;:240}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{}"> </span></p>
<h3><span data-contrast="none">Checking the relevance of data and the risks of poisoning</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">In the context of Machine Learning, data security is essential to prevent the risk of poisoning and to guarantee the integrity of the data processed. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Before processing the data collected, it is essential to continually check </span><b><span data-contrast="auto">the origin of the data in </span></b><span data-contrast="auto">order to guarantee its quality and relevance. This is all the more complex when using external data streams, the provenance and veracity of which can sometimes be uncertain. The major risk lies in the </span><b><span data-contrast="auto">integration of user data during continuous learning</span></b><span data-contrast="auto">. This can lead to unpredictable results, as illustrated by the example of Microsoft&#8217;s TAY ChatBot in 2016. This was designed to learn through user interaction. However, without proper moderation, it quickly adopted inappropriate behaviour, reflecting the negative feedback it received. This incident highlights the importance of constant monitoring and moderation of input data, particularly when it comes from real-time human interactions.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">Various analysis techniques can be used to </span><b><span data-contrast="auto">clean up a dataset</span></b><span data-contrast="auto">. The aim is to check the integrity of the data and remove any data that could have a negative impact on the model&#8217;s performance. </span><span data-contrast="auto">Two main methods are possible: </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559739&quot;:0}"> </span></p>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="19" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">On the one hand, we can individually check the integrity of each data item by checking for outliers, validating the format or characteristic metrics, etc.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6,&quot;335559739&quot;:0}"> </span></li>
<li data-leveltext="" data-font="Symbol" data-listid="19" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">On the other hand, with a global analysis, approaches such as cross-validation and statistical clustering are effective in identifying and eliminating inappropriate elements from the dataset.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p> </p>
<h3><span data-contrast="none">Introduce contradictory examples</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">Contradictory examples are corrupted inputs, modified to mislead the predictions of a Machine Learning algorithm. These modifications are designed to be undetectable to the human eye but sufficient to fool the algorithm. This type of attack exploits vulnerabilities or flaws in the model training to cause prediction errors. To reduce these errors, the model can be taught to identify and ignore this type of input.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">To do this, we can </span><b><span data-contrast="auto">deliberately add contradictory examples to the training data</span></b><span data-contrast="auto">. The aim is to present the model with slightly altered data, in order to prepare it to correctly identify and manage potential errors. Creating this type of degraded data is complex. The generation of these contradictory examples must be adapted to the problem and the threats identified. It is crucial to </span><b><span data-contrast="auto">carefully monitor the training phase </span></b><span data-contrast="auto">to ensure that the model effectively recognises these incorrect inputs and knows how to react correctly. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p> </p>
<h3><span data-contrast="none">Modify user entries</span><span data-ccp-props="{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}"> </span></h3>
<p style="text-align: justify;"><span data-contrast="auto">Input security is essential to minimise the risks associated with malicious manipulation. A major weakness of LLMs (</span><i><span data-contrast="auto">Large Language Models</span></i><span data-contrast="auto">) is their lack of in-depth contextual understanding and their sensitivity to the precise formulation of prompts. One of the best-known techniques for exploiting this vulnerability is the </span><a href="https://www.riskinsight-wavestone.com/en/2023/10/language-as-a-sword-the-risk-of-prompt-injection-on-ai-generative/"><i><span data-contrast="none">prompt injection</span></i></a><span data-contrast="auto"> attack. It is therefore necessary </span><b><span data-contrast="auto">to introduce an intermediate step of transforming user data </span></b><span data-contrast="auto">before it is processed by the model.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-contrast="auto">It is possible to modify the input slightly in order to counter this type of attack, while preserving the accuracy of the model. This transformation can be carried out using various techniques (e.g. coding, adding noise, reformulation, feature compression, etc.). The aim is to retain only what is essential for the response. In this way, any superfluous, potentially malicious information is discarded. In addition, this method deprives the attacker of the possibility of accessing the real input to the system. This prevents any in-depth analysis of the relationships between inputs and outputs, and thus complicates the design of future attacks. However, it remains essential to test the various measures implemented, to ensure that they do not degrade the performance of the model, thus guaranteeing enhanced security without compromising efficiency.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;" aria-level="1"> </p>
<p aria-level="1"> </p>
<p aria-level="1"> </p>
<p style="text-align: justify;"><span data-contrast="auto">Due to industrial production of applications based on Machine Learning and AI, large-scale security is becoming a crucial organisational issue for the market. It is imperative to make the transition to MLSecOps. This transformation is based on three main pillars:</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<ul style="text-align: justify;">
<li data-leveltext="" data-font="Symbol" data-listid="24" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><b><span data-contrast="auto">Strengthening the security culture of Data Scientists</span></b><span data-contrast="auto">: It is essential that Data Scientists understand and integrate security principles into their day-to-day work. This creates a shared security culture and strengthens collaboration between the various players.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
<li data-leveltext="" data-font="Symbol" data-listid="24" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><b><span data-contrast="auto">Securing the tools that produce Machine Learning algorithms</span></b><span data-contrast="auto">: It is essential to select secure MLOPS tools and apply best practices within the tools (rights management, etc.) to secure the Machine Learning algorithm &#8220;factory&#8221; and thus reduce the surface area for compromise.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
<li data-leveltext="" data-font="Symbol" data-listid="24" data-list-defn-props="{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><b><span data-contrast="auto">Integrating AI-specific security measures</span></b><span data-contrast="auto">: Adapting security measures to the specific features of AI systems is crucial to preventing potential attacks and ensuring the reliability of models over time. These security measures should therefore be integrated into the MLOps chain using MLSecOps.</span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></li>
</ul>
<p style="text-align: justify;"><span data-contrast="auto">Make the transition to MLSecOps today. Train your teams, secure your tools, and integrate AI-specific security measures. Making this shift, you will be able to benefit from AI systems that are industrially produced and secure by design. </span><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p style="text-align: justify;"><span data-ccp-props="{&quot;335551550&quot;:6,&quot;335551620&quot;:6}"> </span></p>
<p> </p>
<p> </p>
<p style="text-align: justify;"><b><span data-contrast="none">Thanks to Louis FAY and Hortense SOULIER who contributed to the writing of this article as well.</span></b></p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2024/10/adopting-mlsecops-the-key-to-reliable-and-secure-ai-models/">Adopting MLSecOps: the key to reliable and secure AI models </a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
					<wfw:commentRss>https://www.riskinsight-wavestone.com/en/2024/10/adopting-mlsecops-the-key-to-reliable-and-secure-ai-models/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
			</item>
		<item>
		<title>Machine learning for its cybersecurity: how to find your way in the jungle of products</title>
		<link>https://www.riskinsight-wavestone.com/en/2020/09/machine-learning-for-its-cybersecurity-how-to-find-your-way-in-the-jungle-of-products/</link>
		
		<dc:creator><![CDATA[Carole Meyziat]]></dc:creator>
		<pubDate>Fri, 25 Sep 2020 13:00:07 +0000</pubDate>
				<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[cybersecurity]]></category>
		<category><![CDATA[data analysis]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[POC]]></category>
		<category><![CDATA[SOC]]></category>
		<category><![CDATA[solution]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=14241</guid>

					<description><![CDATA[<p>Machine Learning is an emerging topic in recent years, particularly in the context of cyber security monitoring. However, as mentioned in the article &#8220;Boost your Cybersecurity thanks to Machine Learning&#8221; (Part 1 &#38; Part 2), the development of such solutions...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/09/machine-learning-for-its-cybersecurity-how-to-find-your-way-in-the-jungle-of-products/">Machine learning for its cybersecurity: how to find your way in the jungle of products</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>Machine Learning is an emerging topic in recent years, particularly in the context of cyber security monitoring. However, as mentioned in the article &#8220;<strong>Boost your Cybersecurity thanks to <em>Machine Learning</em></strong>&#8221; (<a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-1-2/">Part 1</a> &amp; <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-2-2/">Part 2</a>), the development of such solutions requires strong human and financial investments.</p>
<p>Indeed, not all companies have the necessary means (or the will) to develop this type of technology internally, and thus turn themselves to market solutions facing a major problem: how to succeed in quickly choosing and integrating an effective solution in my context?</p>
<h2><strong>Why use <em>Machine Learning</em> in Cybersecurity?</strong></h2>
<p>The static nature of current detection solutions (antiviruses using signature bases, alert thresholds in a SIEM&#8230;) no longer allows to face more and more numerous and varied attacks. In addition, security teams are overloaded by the volume of data to be analyzed.</p>
<p>As explained in the article <strong>« Which tools do you need for your SOC? »</strong> (<a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-23/">Part 2</a> &amp; <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-33/">Part 3</a>), <em>Machine Learning</em> provides an answer to these problems encountered by the SOC by using behavioral analysis methods to detect advanced attacks and prioritize the alerts to be analyzed.</p>
<p>&nbsp;</p>
<figure id="post-14244 media-14244" class="align-center"><img loading="lazy" decoding="async" class="aligncenter size-full wp-image-14244" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/image-3.png" alt="" width="928" height="511" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/image-3.png 928w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/image-3-347x191.png 347w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/image-3-71x39.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/image-3-768x423.png 768w" sizes="auto, (max-width: 928px) 100vw, 928px" /></figure>
<p>&nbsp;</p>
<p style="text-align: center;"><em>Principle of anomalies detection in a SOC</em></p>
<p>While these types of solutions provide real added value, they do not completely eliminate the need for current detection methods and are rather used to complement existing tools.</p>
<p>Moreover, their level of complexity (deployment, alerts processing) requires a sufficient level of maturity in terms of detection and reaction (organization, tools, resources, data centralization) before it is relevant to launch a project based on <em>Machine Learning</em>. This will facilitate the scoping phase and speed up deployment.</p>
<h2><strong>In advance of phase: defining the specifications</strong></h2>
<h3>Which use case do I wish to address?</h3>
<p>During our various interventions with our clients, we have supported the integration of numerous solutions and we can highlight four main types of use cases on which companies invest:</p>
<ul>
<li><strong>Fight against fraud</strong>: tools for detecting deviation(s) in user&#8217;s behavior(s)</li>
<li><strong>Email monitoring</strong>: prevention tools against phishing or information leakage (DLP)</li>
<li><strong>Network threat detection</strong>: «<em>Next-Gen </em>» probes</li>
<li><strong>Endpoint threat identification</strong>: « <em>Next-Gen » </em>anti-viruses</li>
</ul>
<p>The choice of a solution (and therefore of a use case) should not be defined unilaterally by the ISS branch, but should be discussed with various stakeholders (ISS, CIO, businesses, etc.). This exchange will enable the target to be specified and the technical and organizational prerequisites to be validated (accessibility of logs, resources to be mobilized, size of teams, etc.) in order to best prepare for its integration and use.</p>
<h3>What kind of solution to choose?</h3>
<p>Depending on the tools already in place and according to the need, several solutions are possible:</p>
<ul>
<li><strong>Choosing to implement a turnkey solution</strong> allowing to treat very precise use cases that are not specific to business issues (EDR, behavioral biometrics&#8230;). This choice generally suits an immediate need rather than a long-term strategy.</li>
<li><strong>Activate a <em>Machine Learning</em> module on a tool</strong> already in place (SIEM, log sink&#8230;) in order to extend its detection perimeter. This choice allows to quickly test use cases and to free oneself from the phases of integration of a new equipment within the IS.</li>
</ul>
<p>Finally, it is essential to remember that there is no miracle solution and that each type of solution responds to specific needs.</p>
<h2><strong>In front of the editor : challenging the essential points</strong></h2>
<h3>Testing the solution and think about scalability</h3>
<p>Once all these prerequisites are defined, it is usual to realize with the editor a Proof of Concept (PoC). However, in the specific case of <em>a Machine Learning</em> solution, the PoC will answer several specific questions:</p>
<ul>
<li><strong>Do my currently collected data allow me to have quickly satisfactory results? </strong><em>Machine Learning</em> solutions require the analysis of a very large amount of data potentially enriched by repositories that can be cross-referenced from several sources. It is therefore necessary to make sure in advance with the editor that the data currently collected already allows to obtain first results.</li>
<li><strong>How long will the learning phase last in my context?</strong> Some <em>Machine Learning</em> solutions produce results only after several months or even years because the learning phases can be extremely long due to the specific context of each company. The possibility to use a log history for tests would allow you to free yourself from a significant learning period.</li>
</ul>
<p>Specific questions will also have to be addressed in order to anticipate the longer term:</p>
<ul>
<li><strong>Will it be possible to enrich the analyses with other types of data?</strong> <em>Machine Learning</em> solutions allow you to perform analyses on many types of data that may have heterogeneous formats, so it is necessary to be able to ensure that the analyses can be enriched with new types of data collected.</li>
<li><strong>Will it be possible to implement new detection algorithms?</strong> The possibility of being able to customize these solutions by adding new types of algorithms (and potentially independently) is not negligible.</li>
<li><strong>How can I be sure that my publisher is always at the cutting edge of technology?</strong> Given the exponential evolution of techniques on this subject, it is important to ensure that the publisher continues to be at the forefront of technology in order to offer new means of defense against attacks that are becoming increasingly complex.</li>
</ul>
<h3>Preparing to protect the data life cycle</h3>
<p>Detection methods based on behavioral analysis require the collection and processing of sensitive/personal data. Thus, especially in the case where the solution is hosted by the editor, issues related to the use of the data will have to be addressed as soon as possible. On the one hand, contractual security requirements will of course need to be reinforced, and on the other hand it may be useful to use upstream solutions that enable more secure processing of the data lifecycle.</p>
<p>For example, startups like <a href="https://sarus.tech/">SARUS</a> are working on <strong>masking personal data</strong>, allowing data scientists to perform <em>Machine Learning</em> without accessing source data. Startups like <a href="https://hazy.com/">HAZY</a> are working on <strong>generating synthetic data</strong> that keeps the statistical value of the useful data, but loses its sensitive nature. This type of solution also allows to artificially enlarge the sample provided, and to obtain an almost unlimited amount of data, which can be very useful in the context of a PoC where currently available data is limited.</p>
<h2><strong>Once the relevance of the solution is validated, the adventure is just beginning!</strong></h2>
<p>Through our various experiences, we have been able to forge a conviction: <strong>the market is mature enough to provide interesting results</strong>, especially on the four use cases mentioned above. The implementation of such tools will be effective if the solutions are connected to a rich ecosystem and meet a specific need. Indeed, <strong>the implementation of one solution can be a success or a failure in two different contexts</strong>. The result will depend on the clarity of the need, the scope targeted, the expertise available (Cybersecurity and <em>Data Science</em>), and the availability of the data (quality and quantity).</p>
<p>While choosing a <em>Machine Learning</em> solution is not easy, the best way to get an idea quickly is to realize a PoC that can be quick and involving little engagement: we have seen with some of our customers that solutions were already showing <strong>interesting results after only two weeks of PoC</strong>.</p>
<p>Keeping in mind that the PoC is only the beginning of the adventure. It will result in the launch of an exciting <strong>project lasting several months</strong> (analysis of new types of alerts, discovery of new techniques &#8230;), bringing a <strong>real added value in security</strong> (detection of new events &#8230;), boosting a <strong>new breath</strong> within the operational security teams (prioritization of efforts, possibility of optimizing redundant tasks &#8230;).</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/09/machine-learning-for-its-cybersecurity-how-to-find-your-way-in-the-jungle-of-products/">Machine learning for its cybersecurity: how to find your way in the jungle of products</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>MACHINE LEARNING POUR SA CYBERSECURITE : COMMENT SE RETROUVER DANS LA JUNGLE DES PRODUITS</title>
		<link>https://www.riskinsight-wavestone.com/en/2020/09/machine-learning-pour-sa-cybersecurite-comment-se-retrouver-dans-la-jungle-des-produits/</link>
		
		<dc:creator><![CDATA[Carole Meyziat]]></dc:creator>
		<pubDate>Mon, 21 Sep 2020 08:00:53 +0000</pubDate>
				<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[analyse de données]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[POC]]></category>
		<category><![CDATA[SOC]]></category>
		<category><![CDATA[solution]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=14178</guid>

					<description><![CDATA[<p>Le Machine Learning est un sujet émergeant de ces dernières années et notamment dans le cadre de la surveillance cybersécurité. Cependant, comme évoqué dans l’article « Booster sa cybersécurité grâce à du Machine Learning » (Partie 1 &#38; Partie 2), le développement...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/09/machine-learning-pour-sa-cybersecurite-comment-se-retrouver-dans-la-jungle-des-produits/">MACHINE LEARNING POUR SA CYBERSECURITE : COMMENT SE RETROUVER DANS LA JUNGLE DES PRODUITS</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>Le <em>Machine Learning</em> est un sujet émergeant de ces dernières années et notamment dans le cadre de la surveillance cybersécurité. Cependant, comme évoqué dans l’article <strong>« Booster sa cybersécurité grâce à du <em>Machine Learning »</em></strong> (<a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-1-2/">Partie 1</a> &amp; <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-2-2/">Partie 2</a>), le développement de telles solutions nécessite de forts investissements humains et financiers.</p>
<p>En effet, toutes les entreprises n’ont pas les moyens nécessaires (ou la volonté) de développer en interne ce type de technologie et se tournent alors vers des solutions du marché en se confrontant à une problématique majeure : comment réussir à choisir et intégrer rapidement une solution efficace dans mon contexte ?</p>
<p>&nbsp;</p>
<h2>Pourquoi utiliser du <em>Machine Learning</em> en cybersécurité ?</h2>
<p>Le caractère statique des solutions de détection actuelles (antivirus utilisant des bases de signatures, alertes seuils d’alerte dans un SIEM…) ne permet plus de faire face à des attaques de plus en plus nombreuses et variées. En outre, les équipes de sécurité sont surchargées par le volume de données à analyser.</p>
<p>Comme expliqué dans l’article <strong>« La saga de l’été sur les nouveaux outils du SOC »</strong> (<a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-23/">Partie 2</a> &amp; <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-33/">Partie 3</a>), le <em>Machine Learning</em> permet de répondre à ces problématiques que rencontre le SOC en utilisant des méthodes d’analyse comportementale pour détecter des attaques avancées et prioriser les alertes à analyser.</p>
<figure id="post-14182 media-14182" class="align-center"><img loading="lazy" decoding="async" class="aligncenter wp-image-14182 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/Image.png" alt="" width="778" height="459" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/Image.png 778w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/Image-324x191.png 324w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/Image-66x39.png 66w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/Image-120x70.png 120w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/09/Image-768x453.png 768w" sizes="auto, (max-width: 778px) 100vw, 778px" /></figure>
<p style="text-align: center;"><em>Principe de détection d&#8217;anomalies dans un SOC</em></p>
<p>&nbsp;</p>
<p>Si ces types de solutions apportent une réelle plus-value, elles ne permettent pas de totalement s’affranchir des moyens de détection actuels et sont plutôt utilisées pour compléter les outils en place.</p>
<p>Par ailleurs, leur niveau de complexité (déploiement, traitement des alertes) requiert en prérequis d’avoir déjà atteint un niveau de maturité suffisant en termes de détection et réaction (organisation, outillage, ressources, centralisation de la donnée) avant qu’il soit pertinent de se lancer dans un projet basé sur du <em>Machine Learning</em>. La phase de cadrage n’en sera que facilitée et le déploiement accéléré.</p>
<p>&nbsp;</p>
<h2>En avance de phase : définir le cahier des charges</h2>
<h3>Quel est le cas d’usage que je souhaite adresser ?</h3>
<p>Lors de nos différentes interventions chez nos clients, nous avons accompagné l’intégration de nombreuses solutions et nous pouvons faire ressortir quatre grands types de cas d’usages sur lesquels les entreprises investissent :</p>
<ul>
<li><strong>La lutte contre la fraude</strong>: outils de détection de déviation(s) dans le(s) comportement(s) d’un utilisateur</li>
<li><strong>La surveillance des emails</strong>: outils de prévention contre le phishing ou la fuite d’informations (DLP)</li>
<li><strong>La détection de menaces sur le réseau</strong>: sondes «<em> Next-Gen </em>»</li>
<li><strong>L’identification des menaces sur les </strong><strong><em>endpoints</em></strong>: anti-virus « <em>Next-Gen »</em></li>
</ul>
<p>Le choix d’une solution (et donc d’un cas d’usage) ne devra pas être défini de manière unilatérale par la filière SSI mais devra être réfléchi avec les différents acteurs concernés (SSI, DSI, métiers…). Cet échange permettra de préciser la cible ainsi que de valider les prérequis techniques et organisationnels (accessibilité des logs, ressources à mobiliser, taille des équipes…) pour préparer au mieux son intégration et son exploitation.</p>
<h3>Quel type de solution choisir ?</h3>
<p>Selon les outils déjà en place et en fonction du besoin, plusieurs solutions sont envisageables :</p>
<ul>
<li><strong>Choisir d’implémenter une </strong><strong>solution clé en main</strong> permettant de traiter des cas d’usages très précis et non spécifiques à des problématiques métiers (EDR, biométrie comportementale…). Ce choix convient généralement à un besoin immédiat plutôt qu’à une stratégie à long terme.</li>
<li><strong>Activer un module de <em>Machine Learning</em> sur un outil déjà en place</strong> (SIEM, puits de logs…) dans le but de pouvoir étendre son périmètre de détection. Ce choix permet notamment de pouvoir tester rapidement des cas d’usages et de s’affranchir des phases d’intégration d’un nouvel équipement au sein du son SI.</li>
</ul>
<p>Enfin, il est essentiel de se rappeler qu’il n’existe pas de solution miracle et que chaque type de solution répond à des besoins précis.</p>
<p>&nbsp;</p>
<h2>Devant l’éditeur : challenger les points essentiels</h2>
<h3>Tester la solution et réfléchir à son évolutivité</h3>
<p>Une fois que tous ces prérequis sont définis, il est d’usage de réaliser avec l’éditeur un <em>Proof of Concept</em> (PoC). Cependant, dans le cas spécifique d’une solution de <em>Machine Learning</em>, le PoC permettra de répondre à plusieurs interrogations spécifiques :</p>
<ul>
<li><strong>Mes données actuellement collectées permettent-elles d’avoir des résultats rapidement satisfaisants ? </strong>Les solutions de <em>Machine Learning</em> requièrent l’analyse d’un très grand nombre de données potentiellement enrichies par des référentiels permettant de croiser plusieurs sources. Il est donc nécessaire de s’assurer en avance de phase avec l’éditeur que les données actuellement collectées permettent déjà d’obtenir des premiers résultats.</li>
<li><strong>Combien de temps la phase d’apprentissage durera-t-elle dans mon contexte ?</strong> Certaines solutions de <em>Machine Learning</em> produisent des résultats qu’à partir de plusieurs mois voire années car les phases d’apprentissages peuvent-être extrêmement longues du fait du contexte particulier à chaque entreprise. La possibilité d’utiliser un historique de logs pour les tests permettrait de s’affranchir d’une période d’apprentissage conséquente.</li>
</ul>
<p>Des questions spécifiques seront également à traiter afin d’anticiper le plus long terme :</p>
<ul>
<li><strong>Sera-t-il possible d’enrichir les analyses avec d’autres types de données ?</strong> Les solutions de <em>Machine Learning</em> permettent de pouvoir effectuer des analyses sur de nombreux types de données pouvant avoir des formats hétérogènes, il est donc nécessaire de pouvoir s’assurer que les analyses pourront être enrichies avec de nouveaux types de données collectées.</li>
<li><strong>Sera-t-il possible de mettre en place de nouveaux algorithmes de détection ?</strong> La possibilité de pouvoir personnaliser ces solutions en y ajoutant de nouveaux types d’algorithmes (et potentiellement de manière indépendante) est non négligeable.</li>
<li><strong>Comment suis-je assuré que mon éditeur soit toujours à la pointe de la technologie ?</strong> Au vu de l’évolution exponentielle des techniques sur ce sujet, il est important de s’assurer que l’éditeur poursuive sa course à l’avancée technologique afin de proposer de nouveaux moyens de défense contre des attaques qui ne cessent de se complexifier.</li>
</ul>
<h3>Se préparer à protéger le cycle de vie de la donnée</h3>
<p>Les méthodes de détection basées sur de l’analyse comportementale nécessitent la collecte et le traitement de données sensibles/personnelles. Ainsi, particulièrement dans le cas où la solution est hébergée chez l’éditeur, les problématiques liées à l’usage des données devront être adressées au plus tôt. D’une part les exigences contractuelles de sécurité devront bien sûr être renforcées, et d’autre part il pourra être utile de faire appel en amont à des solutions permettant un traitement plus sécurisé du cycle de vie de la donnée.</p>
<p>Par exemple, des startups comme <a href="https://sarus.tech/">SARUS</a> travaillent sur <strong>le masquage des données personnelles</strong>, permettant aux <em>data scientists </em>d’effectuer du <em>Machine Learning</em> sans accéder aux données sources. Des startups comme <a href="https://hazy.com/">HAZY</a> travaillent elles sur la <strong>génération de données synthétiques</strong> gardant la valeur statistique des données utiles, mais perdant leur caractère sensible. Ce type de solution permet également d’agrandir artificiellement l’échantillon fourni, et d’obtenir une quantité quasiment illimitée de données, ce qui peut être très utile dans le cadre d’un PoC où les données actuellement disponibles sont en quantité limitées.</p>
<p>&nbsp;</p>
<h2>Une fois que la pertinence de la solution est validée, la partie ne fait que commencer !</h2>
<p>Au travers de nos différentes expériences, nous avons pu nous forger une conviction : <strong>le marché est assez mature pour fournir des résultats intéressants</strong>, notamment sur les quatre cas d’usages mentionnés ci-dessus. La mise en place de tels outils saura être efficace si les solutions sont connectées à un écosystème riche et qu’elles répondent à un besoin spécifique. En effet, <strong>la mise en place d’une même solution peut être une franche réussite ou un échec dans deux contextes différents</strong>. Le résultat dépendra notamment de la clarté du besoin, du périmètre visé, de l’expertise présente (Cybersécurité et <em>Data Science</em>), et encore de la disponibilité de la donnée (qualité et quantité).</p>
<p>Si le choix d’une solution de <em>Machine Learning</em> n’est pas simple, le meilleur moyen de se faire rapidement une idée est de réaliser un PoC pouvant être rapide et peu engageant : nous avons pu constater chez certains de nos clients que des solutions remontaient déjà des <strong>résultats intéressants après uniquement deux semaines de PoC</strong>.</p>
<p>Tout en gardant en tête que le PoC n’est que le début de l’aventure. Il résultera sur le lancement d’un <strong>projet de plusieurs mois </strong>passionnant (analyse de nouveaux types d’alertes, découvertes de nouvelles techniques…), apportant une <strong>réelle plus-value sécurité </strong>(détection de nouveaux évènements…), impulsant un <strong>nouveau souffle</strong> au sein des équipes opérationnelles de sécurité (priorisation des efforts, possibilité d’optimisation des tâches rébarbatives…).</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/09/machine-learning-pour-sa-cybersecurite-comment-se-retrouver-dans-la-jungle-des-produits/">MACHINE LEARNING POUR SA CYBERSECURITE : COMMENT SE RETROUVER DANS LA JUNGLE DES PRODUITS</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Boost your cybersecurity thanks to machine learning? Part 2 &#8211; &#8220;Yes, but choose the right approach!&#8221;</title>
		<link>https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-2-2/</link>
		
		<dc:creator><![CDATA[Carole Meyziat]]></dc:creator>
		<pubDate>Wed, 08 Jul 2020 07:34:20 +0000</pubDate>
				<category><![CDATA[Cloud & Next-Gen IT Security]]></category>
		<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[big data]]></category>
		<category><![CDATA[data analysis]]></category>
		<category><![CDATA[Machine learning]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=13902</guid>

					<description><![CDATA[<p>In the previous article, we presented a step by step approach for Machine Learning applied to cybersecurity in order to use its value and understand how it works (lien vers partie 1 de l’article). In this second part, we will...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-2-2/">Boost your cybersecurity thanks to machine learning? Part 2 &#8211; &#8220;Yes, but choose the right approach!&#8221;</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>In the <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-1-2/">previous article</a>, we presented a step by step approach for Machine Learning applied to cybersecurity in order to use its value and understand how it works (lien vers partie 1 de l’article). In this second part, we will answer a few common questions that may arise before starting such an initiative.</p>
<p>&nbsp;</p>
<h2>Is the amount of data the only success factor?</h2>
<p>Absolutely not. #GarbageInGarbageOut</p>
<p>Focusing only on the data is the best way to be disappointed by machine learning. Results do not appear out of thin air if the input data is not carefully chosen!</p>
<p>Not only should you define precisely the use case before starting, but you need to make sure that relevant data will be fed to the model.</p>
<p>&nbsp;</p>
<h2>What use case should I choose to do machine learning?</h2>
<p>You’re looking at the problem upside down!</p>
<p>The right questions would rather be:</p>
<ul>
<li><strong>Are some use cases currently causing problems?</strong> <em>g. time-consuming process because all the alerts raised require analysis, and ultimately include many false positives. </em></li>
<li><strong>Does a machine learning based approach fit with some of those problems?</strong> <em>g. alerts raised on a behaviour deemed as « abnormal », rather than a fixed detection threshold that would be hard to configure and to keep up to date.</em></li>
<li><strong>Have I checked that there are no standard solutions to tackle the problem? </strong><em>#</em><em>IAmNotReinventingTheWheel</em></li>
</ul>
<p>In cybersecurity, in front of a complex problem that has to be described explicitly (e.g what is a suspect communication in my information system?) and that additionally is very likely to evolve along time (e.g the detection thresholds need frequent adjustment), finding the right compromise between detection of suspect use cases and false positives with static rules can be difficult. In these kinds of situation, it is interesting to explore the machine learning option.</p>
<p>&nbsp;</p>
<h2>Who leads the project: the cybersecurity team or the data team?</h2>
<p>Both, with a lot of communication! #OneTeam</p>
<p>Each of these teams have <strong>their own</strong> <strong>expertise</strong>, technical for data scientists, business for the cybersecurity team. One without the other does not allow to properly conduct a machine learning for cybersecurity project.</p>
<p>Without data scientists, the cybersecurity team might for instance:</p>
<ul>
<li>Start without enough data. <em>g. the volume of data does not allow the algorithm to define a standard behaviour and it cannot separate normal situations from abnormal.</em></li>
<li>Forget to cross some data. <em>g. each user’s first connection to a new application is detected as an abnormal event, because it is not combined with a variable to allow the comparison of this specific behaviour with the behaviour of the mass of users (that already use the application).</em></li>
<li>Not being able to interpret the alerts given by the algorithm, and not being able to optimize it. <em>g. the algorithm shows anomalies that turn out not to be, the cybersecurity team does not understand on what is based the algorithm’s analysis and does not know how to improve it.</em></li>
</ul>
<p>And without the cybersecurity team, the data scientists might:</p>
<ul>
<li>Not know how to assess the relevance of the anomalies detected. <em>g. the algorithm rises a log as an anomaly, but the data scientists cannot evaluate if it is a real cybersecurity issue or not.</em></li>
<li>Not being able to select the data the algorithm should be fed with. <em>g. cybersecurity gave its proxy logs to the data scientists, but they did not sort the most adequate fields for the use case: the results of the algorithm are confused.</em></li>
<li>Miss out on crucial elements that should be integrated in the model to answer the need of the business. <em>g. by trying to optimise an algorithm, a field that is necessary to the categorisation of an anomaly in cybersecurity is deleted from the data set; the results of the algorithm are no longer valuable for cybersecurity purposes.</em></li>
</ul>
<p><strong>Combining the expertise of both teams is key to guarantee that the resources of the Machine Learning will be used efficiently to bring a high value-added answer for cybersecurity.</strong></p>
<p>&nbsp;</p>
<h2>What are the prerequisites?</h2>
<p>The data!</p>
<p>Although it is not the only aspect to focus on, no model can be create without data.</p>
<p>As a reminder, machine learning encompasses all the techniques that allow machines to learn without having been explicitly programmed for their purpose. For them to learn, the algorithms are fed with the <strong>data</strong> that we can provide them.</p>
<ul>
<li>They will need a <strong>high quantity</strong> of data so that they can define a « norm » as sharp as possible, since it will be defined and confronted to important volumes of real-life cases. Note that «high quantity » does not necessarily mean « diversity »: it is important to only select the data relevant for the use case.</li>
<li>The data will need to be <strong>qualitative</strong> not to deceive the learning of the algorithm, <em>e. </em>without the introduction of biases for instance.</li>
</ul>
<p>It will be useful to identify the relevant type of data for the analysis (e.g. security logs), the sources where they will be collected (e .g. web proxies) and the resources that will enrich them (e.g. CMDB to link IPs with machine names) if needed.</p>
<p>&nbsp;</p>
<h2>I don’t have much data available for my use case, does this mean that machine learning is not for me?</h2>
<p>Not necessarily!</p>
<p>If the available data is relevant to the use case and well distributed (e.g. representative of a usual situation on a defined time period so that a non-supervised algorithm could learn the « normal » situation), it is possible to have interesting results.</p>
<p>For instance, with a well-defined use case (e.g. targeted on a specific user population) and the adequate collected logs, suspect behaviors can be detected in proxy logs with only two weeks of traffic (depending on the wordiness of the logs, this only represents a few GB).</p>
<p>&nbsp;</p>
<h2>Which algorithm should I use?</h2>
<p>Pick one and see!</p>
<p>The most important element that will allow to answer this question in a more adapted way is the type of learning process: supervised or non-supervised.</p>
<p>The choice of one non-supervised algorithm rather than another will affect performance, but not as much as the input data. Many algorithms can work for a given use case, and their performance will depend on the context (e.g. need to interpret the results, volume of the training data…).</p>
<p>The data scientists choose the algorithm based on their watch in order to suggest the most recognized and performing algorithm for a determined use case and context.</p>
<p>&nbsp;</p>
<h2>Should I do it myself or outsource?</h2>
<p>It depends, and it can evolve in time!</p>
<p>Our first article detailed an implementation example: development with your own tools, starting from scratch. In reality, there are three implementation options; the choice depends on the use case, the available resources and the ambitions.</p>
<p>&nbsp;</p>
<figure id="post-13904 media-13904" class="align-none"></figure>
<figure id="post-13906 media-13906" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13906 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-7.png" alt="" width="1166" height="460" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-7.png 1166w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-7-437x172.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-7-71x28.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-7-768x303.png 768w" sizes="auto, (max-width: 1166px) 100vw, 1166px" /></figure>
<p>&nbsp;</p>
<p>Each of these scenarios present their strengths and weaknesses and it is possible to use them conjunctly. Also, it is essential to keep an eye on the market in order to observe if new, innovating and more-performing solutions have since appeared.</p>
<p>#TakeAStepBack</p>
<p>&nbsp;</p>
<h2>Is it easy to test?</h2>
<p>If the framing is well done, yes! #Test&amp;Learn</p>
<p>Once that the use case is selected, the data availability checked and the implementation method chosen, it is rather easy to test the benefit of machine learning before further investments.</p>
<p>This type of project is well adapted to iterative or sprint methods. Try out rapidly the selected solutions, demonstrate their relevance thanks to the added value, or on the contrary bring to light the fact that for this use case, the results are not encouraging enough to continue.</p>
<p>Whatever the case may be, a POC approach following an opportunity study can help you get a quick idea. This step, before starting on a larger scale, also enables you to take a step back to evaluate the potential benefits (e.g gains in time due to less false positives, better overall reactivity because the alerts are more relevant) compared to the investment to be made (e.g dedicated computing infrastructures, skills to recruit) before starting.</p>
<p>&nbsp;</p>
<h2>Once that my POC is done, how do I scale up?</h2>
<p>Once again, step by step!</p>
<p>Once that the first conclusive results are obtained on a use case, it is possible to envisage a production launch. Be careful not to go too fast: the production launch raises new questions that must be answered before continuing, for instance:</p>
<ul>
<li>What are the volumes of data to analyse? What pre-processing (data preparation phase) needs to be done beforehand? How frequently? (Real time, delayed time…)</li>
<li>How often will the algorithm need to go through the learning process? On how much data?</li>
<li>What are the necessary infrastructures?</li>
<li>Which skills and resources will enable to maintain to solution in time?</li>
</ul>
<p>It will then be time to take a step back and <strong>make operational choices</strong> while keeping in mind a long-term vision.</p>
<p>&nbsp;</p>
<h2>How much does it cost?</h2>
<p>It all depends on the ambitions.</p>
<p>For a POC, a framing allows to limit the investment until the added value of machine learning is demonstrated (e.g. activation of an option on a security tool on a determined time frame to test it, no infrastructure investment)</p>
<p>Once the added value is tangible, the question of the costs involved for production launch and maintenance in time surges. A few elements must be considered to evaluate the total investment that will be needed:</p>
<ul>
<li><strong>Material investments </strong>(e.g. hardware for market solutions, infrastructure and resources to acquire computing power, in-house development) and <strong>software investments </strong>(license, machine learning feature activation on SIEM, big data tools for data science…). It is essential not to put aside the computing power that is necessary to the functioning of some models. It is one reason why &#8211; besides the quality of the results- the most relevant data are needed to answer a use case.</li>
<li><strong>Talent acquisition :</strong> the new profiles to include (e.g. data scientists, data engineers) as well as the business profiles and accurate experts, that will be solicited during the project phase but also in the long term (alerts handling, re learning process, non-diversion tests for the solution, etc.)</li>
</ul>
<p>&nbsp;</p>
<h2>To sum up, what are the main pitfalls to avoid?</h2>
<p>#Reminder</p>
<p>&nbsp;</p>
<figure id="post-13908 media-13908" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13908 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-6.png" alt="" width="1199" height="549" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-6.png 1199w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-6-417x191.png 417w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-6-71x33.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-6-768x352.png 768w" sizes="auto, (max-width: 1199px) 100vw, 1199px" /></figure>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-2-2/">Boost your cybersecurity thanks to machine learning? Part 2 &#8211; &#8220;Yes, but choose the right approach!&#8221;</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Boost your cybersecurity thanks to Machine Learning?  Part 1 – « Absolutely, here’s how! »</title>
		<link>https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-1-2/</link>
		
		<dc:creator><![CDATA[Carole Meyziat]]></dc:creator>
		<pubDate>Fri, 03 Jul 2020 12:00:14 +0000</pubDate>
				<category><![CDATA[Cloud & Next-Gen IT Security]]></category>
		<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[data analysis]]></category>
		<category><![CDATA[DLP]]></category>
		<category><![CDATA[Machine learning]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=13821</guid>

					<description><![CDATA[<p>Nowadays, we hear about artificial intelligence (AI) everywhere, it affects all sectors&#8230; and cybersecurity is not to be left out! According to a global benchmark published by CapGemini in the summer of 2019, 69% of organizations consider that they will...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-1-2/">Boost your cybersecurity thanks to Machine Learning?  Part 1 – « Absolutely, here’s how! »</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>Nowadays, we hear about artificial intelligence (AI) everywhere, it affects all sectors&#8230; and cybersecurity is not to be left out! According to a global benchmark published by CapGemini in the summer of 2019, 69% of organizations consider that they will no longer be able to respond to a cyber-attack without AI. Gartner places <strong>AI applied to cybersecurity</strong> in the top 10 strategic technological trends for 2020.</p>
<p>Throughout two articles, we will explore AI&#8217;s capabilities, specifically those pertaining to Machine Learning for cybersecurity. In this first article, we will go through each stage of a Machine Learning project focused on a cybersecurity use scenario: <strong>the exfiltration of data from the IS</strong>, on a very simplified case. We have chosen a case study, but the concepts of this article are applicable to all Machine Learning projects and can be transposed to any other use case, most notably cyber.</p>
<figure id="post-13789 media-13789" class="align-none"></figure>
<p>&nbsp;</p>
<h2>First of all, what are we talking about?</h2>
<p>The term Artificial Intelligence (AI) includes all the techniques that allow machines to simulate intelligence. Today, however, when we talk about AI, we very often talk about <strong>Machine Learning</strong>, one of its sub-domains. These are <strong>techniques that enable machines to learn a task, without having been explicitly programmed to do so</strong>.</p>
<p>For us cybersecurity professionals, this is a good thing: we often find it difficult to describe explicitly what it is we want to detect! Machine Learning then provides us with new perspectives, that have already many application cases, of which the main ones are illustrated hereunder:</p>
<p>&nbsp;</p>
<figure id="post-13847 media-13847" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13847 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-0-1.png" alt="" width="1189" height="543" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-0-1.png 1189w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-0-1-418x191.png 418w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-0-1-71x32.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-0-1-768x351.png 768w" sizes="auto, (max-width: 1189px) 100vw, 1189px" /></figure>
<p>&nbsp;</p>
<h2>The example of a use case for ML-enhanced cybersecurity: the DLP</h2>
<p>To illustrate the contribution of Machine Learning to cybersecurity, we have chosen to focus on the fraudulent extraction of data from a company&#8217;s information system. In other words, the case of DLP (Data Leakage Prevention), an issue encountered by many companies. We want to detect suspicious outbound communications in order to prevent them from happening.</p>
<p>&nbsp;</p>
<figure id="post-13829 media-13829" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13829 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-2.png" alt="" width="1363" height="335" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-2.png 1363w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-2-437x107.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-2-71x17.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-1-2-768x189.png 768w" sizes="auto, (max-width: 1363px) 100vw, 1363px" /></figure>
<p>&nbsp;</p>
<p><em>«Very well but… how do we identify a suspicious communication? »</em></p>
<p>By large traded volumes? By a strange destination? By an unusual connection time?</p>
<p>In reality, our problem is <strong>complex to explain </strong>and what we need to assess is <strong>likely to change over time</strong>. Therefore, by using only static detection rules, our security teams find it difficult to be exhaustive. They can play on the thresholds of these rules to refine the detected elements, but unfortunately still find themselves with a large number of false positives to deal with.</p>
<p>We understand that the Machine Learning as we defined it previously can be useful here. What if we try it?</p>
<p>&nbsp;</p>
<figure id="post-13831 media-13831" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13831 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-3.png" alt="" width="1239" height="561" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-3.png 1239w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-3-422x191.png 422w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-3-71x32.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-3-768x348.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-2-3-730x330.png 730w" sizes="auto, (max-width: 1239px) 100vw, 1239px" /></figure>
<p>&nbsp;</p>
<h2>Step 1: Clarify the need</h2>
<p>That is what we just did!</p>
<p>&nbsp;</p>
<h2>Step 2: Choose the data</h2>
<p>When we hear the words Machine Learning, we usually must understand &#8220;data&#8221; to feed the algorithms. <strong>Lots of data, and of good quality!</strong></p>
<p>When asking where to get useful data for our data exfiltration case to our <strong>requesting business</strong> (which for once is cybersecurity!), the web proxy stands out as the big winner: it sees almost all the traffic that comes out through the IS. So, we recovered its logs and they look like this:</p>
<p>&nbsp;</p>
<figure id="post-13833 media-13833" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13833 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-3-2.png" alt="" width="1227" height="331" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-3-2.png 1227w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-3-2-437x118.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-3-2-71x19.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-3-2-768x207.png 768w" sizes="auto, (max-width: 1227px) 100vw, 1227px" /></figure>
<p><em> </em></p>
<p><em>« This all seems quite complicated…»</em></p>
<p><em>Data scientists </em>have indeed enough reasons to get lost: on the one hand, the whole thing is not easily understandable, and on the other hand, after consultation with the cybersecurity business, <strong>not all fields are really useful for our use case. We therefore selected some</strong> of them with the cybersecurity business before continuing.</p>
<p>&nbsp;</p>
<figure id="post-13835 media-13835" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13835 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-4-2.png" alt="" width="1297" height="218" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-4-2.png 1297w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-4-2-437x73.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-4-2-71x12.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-4-2-768x129.png 768w" sizes="auto, (max-width: 1297px) 100vw, 1297px" /></figure>
<p>&nbsp;</p>
<p>The result is easier for data scientists to use!</p>
<p>&nbsp;</p>
<h2>Step 3: prepare the data</h2>
<p>Data scientists can now &#8220;explore the data&#8221; in order to ensure optimal learning of the algorithm. Here, they give us a surprising element in the distribution of our requests according to their upload volume. Since we want to detect data exfiltration, this variable is of particular interest to us.</p>
<p>&nbsp;</p>
<figure id="post-13837 media-13837" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13837 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-5-4.png" alt="" width="1179" height="481" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-5-4.png 1179w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-5-4-437x178.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-5-4-71x29.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-5-4-768x313.png 768w" sizes="auto, (max-width: 1179px) 100vw, 1179px" /></figure>
<p>&nbsp;</p>
<p>The value of our variable is not distributed, we even have a very high volume at 0.</p>
<p><em>“But still, there are a lot of these requests with a null upload volume; is it really relevant to keep them in our case? “. </em></p>
<p>Indeed, after discussion with the cybersecurity business, it appears that these data do not bring much for our use case. So we decided to remove them. Our sample was then distributed as follows:</p>
<p>&nbsp;</p>
<figure id="post-13839 media-13839" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13839 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-6-4.png" alt="" width="1177" height="511" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-6-4.png 1177w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-6-4-437x191.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-6-4-71x31.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-6-4-768x333.png 768w" sizes="auto, (max-width: 1177px) 100vw, 1177px" /></figure>
<p>&nbsp;</p>
<p>After several back and forth exchanges between data scientists challenging the data from a statistical point of view and cybersecurity teams responding with their professional eye, the data is simplified as much as possible. Data is then:</p>
<ul>
<li><strong>Enriched </strong>by creating new variables that are denser in useful information. We introduced a<strong> relative upload volume </strong>to each site, measuring the difference between the upload volume of a request and its average value over the last 90 days. We could also add the<strong> connection time </strong>for example.</li>
<li><strong>Normalized </strong>by reducing the amplitude of each variable to decrease an over- or underweighting of certain variables.</li>
<li><strong>Digitized</strong>, as most algorithms can only interpret numerical variables.</li>
</ul>
<p>We can now split our data set in two: <strong>one set that will be used to train our model</strong>, <strong>one set that will allow us to test its performance</strong>. Several separation methods exist, enabling us to keep certain characteristics of the data (e.g. seasonality), but the objective remains the same: to guarantee an evaluation measure as close as possible to the model&#8217;s real performances, by presenting the model with data that it did not have at its disposal during training.</p>
<p>&nbsp;</p>
<h2>Step 4: Choosing the learning method and training the model</h2>
<p>Some algorithms are more efficient than others for a given problem, it is therefore necessary to make a reasoned choice.</p>
<p>There are two main categories of Machine Learning algorithms:</p>
<ul>
<li><strong>Supervised, </strong>when we have labeled data as a reference to give as an example to our algorithm. These algorithms are for example used in cybersecurity by anti-spam solutions: they can learn via the users’ classification of emails as spam for example.</li>
<li><strong>Unsupervised,</strong> when we do not know precisely what we want to detect or when we lack examples to provide the algorithm with for its learning (i.e. we lack labeled data).</li>
</ul>
<p>As explained above, the context of our use case points us more towards the second option. It is for the same reasons that we initially thought of Machine Learning. We then choose our unsupervised learning algorithm (Isolation Forest here, but we could have chosen another one) and train our model.</p>
<p>&nbsp;</p>
<h2>Step 5: Analyze results</h2>
<p>We use our test data set to evaluate the effectiveness of our model in detecting exfiltration cases.</p>
<p>The designed model detects patterns in the data (queries), then compares the new data (queries) with these patterns and <strong>highlights those that deviate from what it considers to be the norm through its learning (anomaly score).</strong></p>
<p>Here are our results:</p>
<p>&nbsp;</p>
<figure id="post-13841 media-13841" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13841 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-7-2.png" alt="" width="1212" height="515" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-7-2.png 1212w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-7-2-437x186.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-7-2-71x30.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-7-2-768x326.png 768w" sizes="auto, (max-width: 1212px) 100vw, 1212px" /></figure>
<p>&nbsp;</p>
<p><em>« Ok, but how should I interpret all this ? »</em></p>
<p>The graph on the left represents the anomaly scores associated with each query in the test set, sorted in chronological order. To the right are the logs with the highest anomaly scores.</p>
<p>After investigation with the cybersecurity business:</p>
<ul>
<li>The peak in yellow, corresponds to <strong>a much larger upload volume</strong> than others, from a user who extracts a large volume of data. This anomaly is legitimate. However, an alert based on a static volume per request rule would also have detected this suspicious communication.</li>
<li>More interesting now, the peaks in red, correspond to <strong>requests for low volumes of regular uploads to unknown sites from the same user.</strong> These anomalies are harder to detect with conventional means, yet <strong>our algorithm has given them the same anomaly score as a large volume.</strong> They therefore become just as high a priority to qualify for our cybersecurity alert management teams.</li>
</ul>
<p>&nbsp;</p>
<figure id="post-13843 media-13843" class="align-none"><img loading="lazy" decoding="async" class="size-full wp-image-13843 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-8-2.png" alt="" width="1184" height="523" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-8-2.png 1184w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-8-2-432x191.png 432w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-8-2-71x31.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2020/07/Image-8-2-768x339.png 768w" sizes="auto, (max-width: 1184px) 100vw, 1184px" /></figure>
<p>&nbsp;</p>
<p>Now, let&#8217;s focus on the large package in the center of the graph (in orange). On the first day, we observe a large anomaly score, a sudden <strong>sending of data by many users to the city&#8217;s transit website</strong>. After investigation we realize that this is <strong>not a real security incident</strong>, but the annual sending of receipts for the continuation of transport subscriptions (we are at the beginning of September &#8230;).  We then observe that the <strong>algorithm &#8220;understands&#8221; that these flows return to several users and progressively integrates them as a habit. The risk score therefore decreases day by day.</strong></p>
<p>The model therefore detects what is out of the norm, regardless of the standard, and corrects itself with experience. <strong>This is where Machine Learning presents a real added value compared to traditional detection methods.</strong></p>
<p>If the performance of the model on this first simplified use case attests to the potential value of the Learning Machine, it may be time to move on to step 6 &#8211; deployment to scale!</p>
<p>In a second article we will come back to these steps to highlight the success factors and pitfalls to be avoided when studying the possibilities of Machine Learning in cybersecurity.</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2020/07/boost-your-cybersecurity-thanks-to-machine-learning-1-2/">Boost your cybersecurity thanks to Machine Learning?  Part 1 – « Absolutely, here’s how! »</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Detect cyber incidents with machine learning: our model in 5 key steps!</title>
		<link>https://www.riskinsight-wavestone.com/en/2019/12/detect-incidents-machine-learning/</link>
		
		<dc:creator><![CDATA[Hugo.MORET@wavestone.fr]]></dc:creator>
		<pubDate>Tue, 24 Dec 2019 14:19:30 +0000</pubDate>
				<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[Ethical Hacking & Incident Response]]></category>
		<category><![CDATA[artificial intelligence]]></category>
		<category><![CDATA[détection]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[SOC]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=12488</guid>

					<description><![CDATA[<p>As the role of Artificial Intelligence grows in companies, from predictive maintenance to price optimization, new so-called ‘intelligent’ tools are being developed for cybersecurity. How do these tools exploit recent developments in Machine Learning? What steps should be taken to...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/12/detect-incidents-machine-learning/">Detect cyber incidents with machine learning: our model in 5 key steps!</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p><em>As the role of <strong>Artificial Intelligence</strong> grows in companies, from predictive maintenance to price optimization, new so-called <strong>‘intelligent’</strong> tools are being developed for cybersecurity. How do these tools exploit recent developments in Machine Learning? What steps should be taken to develop an intelligent and above all relevant detection solution in this context?</em></p>
<h2>From static detection methods to behavioral analysis</h2>
<p>As attacks evolve more and more rapidly and in an increasingly sophisticated way, the SOC (Security Operations Center) is forced to review its approach and existing tools as static detection mechanisms become obsolete:</p>
<ul>
<li>The historical approach uses the <strong>recognition of known behaviors and footprints</strong> (e.g. malware signatures). This method, called <strong>misuse-based</strong>, provides explicit alerts that are easy to analyse for operational staff, but only attacks that have already occurred and been detected can be recognized.</li>
<li>The new approach aims to <strong>analyse actions that deviate from the behavior normally observed</strong>, without having to explicitly and exhaustively define a malicious act (e.g. the behavior of an individual who deviates from that of his colleagues). This <strong>anomaly-based</strong> approach makes it possible to detect attacks that are not directly run through the tools but require high volumes of data.</li>
</ul>
<p>The anomaly-based approach exploits the correlation capabilities of <strong>unsupervised learning</strong> algorithms that highlight links between unlabeled data (i.e. not categorized as normal or abnormal).</p>
<h2>Recipe: detection of anomalies on a machine learning bed</h2>
<p>To know if Machine Learning is appropriate for its context, the best solution is to create a PoC (Proof of Concept). How do you implement it? What are the key points to look out for? Here are the key steps in our development.</p>
<h3>Starter, main or dessert: define the use case</h3>
<p>Doing Machine Learning is good, knowing why is better. Defining a <strong>use case</strong> is like answering the question ‘<em>What do you want to observe?</em>’ and determining the means available to respond.</p>
<p>In our context, a use case is a threat scenario involving one or more groups of accounts (malicious administrators, exfiltration of sensitive data, etc…). To evaluate them, several criteria must be taken into consideration:</p>
<ul>
<li><strong>Utility:</strong> what would be the impact if the scenario were to happen?</li>
<li><strong>Data availability:</strong> what are the available sources of useful data?</li>
<li><strong>Data complexity:</strong> is the available data structured (numbers, tables) or unstructured (images, text)?</li>
</ul>
<p>We have chosen to work on the compromising of <strong>service accounts:</strong> some may have important rights, and their automated actions generate relatively structured data. In the context of a PoC, a limited scope, and homogeneous and easily accessible data sources are essential to obtain concrete and exploitable results, before considering more ambitious use cases.</p>
<h3>Ingredient weighing: determine the data model</h3>
<p>In order to make the best use of the data, it is necessary to define <strong>a behavior to be modeled based on available information</strong>. This is where business expertise comes in: can an <strong>isolated action</strong> be a sign of compromise or should a <strong>series of actions</strong> be considered for detecting malicious behavior?</p>
<p>First, we defined a model based on the analysis of unit and family logs (e.g. connections, access to resources, etc.) to evaluate the overall functioning. However, a <strong>model that is too simple</strong> will ignore weak signals hidden in action <strong>correlations</strong>, while a <strong>representation that is too complex</strong> will add processing time and be more sensitive to modelling biases.</p>
<h3>Selection of tools: choose the algorithm</h3>
<p>Several types of algorithms can be used to detect anomalies:</p>
<ul>
<li>Some try <strong>to isolate</strong> each point: if a point is easy to isolate, it is far from the others and therefore more abnormal.</li>
<li><strong>Clustering</strong> algorithms creates groups of points that look alike and from this it calculates the center of gravity of each one to create the average behavior: if a point is too far from the center, it is considered abnormal.</li>
<li>Less common, <a href="https://towardsdatascience.com/credit-card-fraud-detection-using-autoencoders-in-h2o-399cbb7ae4f1?gi=bb5833d3b9ba"><strong>auto-encoders</strong></a> are artificial neural networks that learn to recreate normal behavior with fewer parameters: behavior reproduction errors can be considered as an anomaly score.</li>
</ul>
<p>Other approaches still exist, including the most exotic <a href="https://www.hindawi.com/journals/tswj/2014/156790/abs/">artificial immune systems</a> that mimic biological mechanisms to create an evolving detection tool. However, it should not be forgotten that <strong>a simple and well optimized tool is often more effective than an overly complex tool.</strong></p>
<p>The <strong>k-means</strong> clustering algorithm was selected in our case: used in the detection of bank fraud, it simplifies re-training which allows the tool to remain adaptable despite changes in behavior.</p>
<p>All these algorithms can also be <strong>enhanced, depending on the chosen behavior model</strong>, to consider a series of actions. Thus, <a href="https://en.wikipedia.org/wiki/Convolutional_neural_network">convolutional</a> or <a href="https://en.wikipedia.org/wiki/Recurrent_neural_network">recurrent neural networks</a> can be added upstream to take into account <strong>time series</strong>.</p>
<h3>Preparation of ingredients: transforming data</h3>
<p>Once the algorithm has been selected, the raw data must be processed to make it usable. This process is carried out in several steps:</p>
<ul>
<li><strong>Cleaning:</strong> correction of parsing errors, removal of unnecessary information and addition of missing information.</li>
<li><strong>Enrichment:</strong> adding data from other sources and reprocessing fields to highlight information (e. g. indicate if a date is a public holiday&#8230;).</li>
<li><strong>Transformation:</strong> creation of binary columns for qualitative data (e.g. account name, event type, etc.) that cannot be directly transformed into numbers (one column for each unique value, indicating whether the value is present or not).</li>
<li><strong>Normalization:</strong> reprocessing the values so that they are all between 0 and 1 (to prevent one field from taking over from another).</li>
</ul>
<p>Due to the variety of possible events and the complexity of the logs, we have chosen to automate this process: for each field, the algorithm detects the type of data and selects the appropriate transformation from a predefined library. The operator can then interact with the tool to modify the choice before continuing the process.</p>
<h3>Seasoning: test and optimize the tool</h3>
<p>Once the model has been defined, the algorithm chosen and the data transformed, the tool developed should be able to raise alerts on anomalies. Do these alerts make sense or are they false positives?</p>
<p>In order to evaluate the performance of the tool, we performed two types of tests:</p>
<ul>
<li><strong>Intrusion simulation</strong> by performing malicious actions to check if they are detected as abnormal (this approach can also be handled by directly adding &#8220;false&#8221; logs to data sets).</li>
<li><strong>Analysis of anomalies</strong> by checking whether the alerts raised actually correspond to malicious behavior.</li>
</ul>
<p>Many parameters can be adjusted in the algorithms to refine detection. <strong>Performance optimization</strong> is achieved through an iterative process; changing parameters and observing the effect on a <strong>set of validation data</strong>. Manually time-consuming, it can be improved by the <a href="https://en.wikipedia.org/wiki/Hyperparameter_optimization">AutoML</a> approach which seeks to automate certain steps by using optimization algorithms.</p>
<p>However, parameter optimization is not enough: the results of our PoC have shown that the quality of detection based on behavioral analysis depends largely on the relevance of the behaviors defined before the algorithm is developed.</p>
<h2><strong>ML or not ML: that may not be the question</strong></h2>
<p>Despite its undeniable advantages, Machine Learning <strong>is a tool to be used in a rational way:</strong> frameworks are becoming increasingly accessible and easy to use, but the <strong>definition of the use-case</strong> and the <strong>behavior model</strong> are still crucial steps that exist. These choices, where business expertise is essential, will irreversibly influence the choice of data, the selection of the detection algorithm and the tests to be performed.</p>
<p>The question is no longer ‘<em>Where can I put Machine Learning in my SOC?</em> ‘, but rather <em>‘Of all the approaches available, <strong>which is the most effective</strong> to address my problem?’.</em></p>
<p>To find out, there&#8217;s only one solution: light the fires!</p>
<h2><strong>To go further&#8230;</strong></h2>
<p>… here are the tools used during our PoC:</p>
<ul>
<li><strong>IDE</strong>
<ul>
<li><strong>Pycharm:</strong> clear and practical development environment with efficient library management</li>
</ul>
</li>
<li><strong>Language</strong>
<ul>
<li><strong>Python:</strong> a language widely used in the field of Data Science with many powerful libraries</li>
</ul>
</li>
<li><strong>Libraries</strong>
<ul>
<li><strong>Scikit-learn:</strong> complete Machine Learning library (supervised, unsupervised&#8230;)</li>
<li><strong>Pandas:</strong> complex processing of data tables</li>
<li><strong>Numpy:</strong> handling of matrices and vectors</li>
<li><strong>Matplotlib, Seaborn:</strong> display of graphics for visualization</li>
</ul>
</li>
</ul>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/12/detect-incidents-machine-learning/">Detect cyber incidents with machine learning: our model in 5 key steps!</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>L’utilisation du Machine Learning par les startups françaises dans le domaine de la cybersécurité</title>
		<link>https://www.riskinsight-wavestone.com/en/2019/10/radar-startups-2019-33/</link>
		
		<dc:creator><![CDATA[Paul Bonnaure]]></dc:creator>
		<pubDate>Tue, 22 Oct 2019 11:45:50 +0000</pubDate>
				<category><![CDATA[Cloud & Next-Gen IT Security]]></category>
		<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[radar]]></category>
		<category><![CDATA[start-up]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=12182</guid>

					<description><![CDATA[<p>Cet article a pour but de présenter nos convictions sur l’utilisation du Machine Learning par les startups françaises en cybersécurité du Radar Wavestone 2019. L’intelligence artificielle est un sujet à la mode et la cybersécurité fait partie des cas d’usages...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/10/radar-startups-2019-33/">L’utilisation du Machine Learning par les startups françaises dans le domaine de la cybersécurité</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p><em>Cet article a pour but de présenter nos convictions sur l’utilisation du Machine Learning par les startups françaises en cybersécurité du <a href="https://www.riskinsight-wavestone.com/en/2019/10/radar-startups-2019-13/">Radar Wavestone 2019</a>.</em></p>
<p>L’intelligence artificielle est un sujet à la mode et la cybersécurité fait partie des cas d’usages phare de développement. Est-ce aussi le cas pour les <em>startups</em> françaises en cybersécurité ? Qu’en est-il de son utilisation ? Quelles sont les tendances du marché concernant cette technologie ?</p>
<p>&nbsp;</p>
<h2>« Intelligence Artificielle », « Machine Learning », « Deep Learning » : trois termes trop souvent confondus</h2>
<p>Avant de rentrer dans le vif du sujet, commençons par clarifier le vocabulaire qui sera employé dans la suite de l’article :</p>
<ul>
<li><em><strong>Intelligence Artificielle</strong></em>: ensemble des techniques mises en œuvre pour que des machines simulent l’intelligence ;</li>
<li><strong><em>Machine Learning</em></strong>: technique reposant sur des modèles statistiques qui permettent à l’ordinateur « d’apprendre » à partir d’un grand nombre de données ;</li>
<li><strong><em>Deep Learning</em></strong>: méthode de <em>Machine Learning</em> basée sur un réseau de neurones profonds. D’autres méthodes existent : <em>Support Vector Machines, Random Forests, K-Nearest Neighbors</em>, …</li>
</ul>
<p>La confusion entre ces trois termes est fréquente. Bien souvent l’utilisation du terme « Intelligence Artificielle » en cybersécurité désigne l’utilisation du <em>Machine Learning</em>, sous toutes ses formes.</p>
<p>&nbsp;</p>
<figure id="post-12183 media-12183" class="align-none"><img loading="lazy" decoding="async" class="aligncenter wp-image-12183 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-1.png" alt="" width="1250" height="591" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-1.png 1250w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-1-404x191.png 404w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-1-768x363.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-1-71x34.png 71w" sizes="auto, (max-width: 1250px) 100vw, 1250px" /></figure>
<p>&nbsp;</p>
<h2>La cybersécurité, un terreau fertile pour les technologies de Machine Learning</h2>
<p>Sur les <strong>134 <em>startups</em></strong> recensées dans notre radar 2019 des <em>startups</em> françaises en cybersécurité, <strong>19% </strong>proposent des solutions basées sur du <em>Machine Learning</em>. Interrogées, <strong>70%</strong> de ces <em>startups</em> déclarent que développer ce type de technologie dans leurs solutions fait partie de leur stratégie.</p>
<p><img loading="lazy" decoding="async" class="aligncenter wp-image-12185 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-2.png" alt="" width="1274" height="941" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-2.png 1274w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-2-259x191.png 259w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-2-768x567.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-2-53x39.png 53w" sizes="auto, (max-width: 1274px) 100vw, 1274px" /></p>
<p>De plus, l’utilisation du <em>Machine Learning</em> dans certains domaines de la cybersécurité devient quasi <strong>incontournable</strong> et la majorité des <em>startups</em> de ces domaines envisagent de baser les futures évolutions de leur solution sur cette technologie.</p>
<p>Le <em>Machine Learning</em> en cybersécurité est en pleine progression et son utilisation, déjà implanté dans l’écosystème des <em>startups</em> françaises, démontre une forte volonté d’innovation du marché. On pressent que ce rythme d’adoption va continuer à s’accélérer dans les années à venir, la même « photo » de l’état des lieux dans un an devrait le prouver.</p>
<p>&nbsp;</p>
<h2>Le Machine Learning utilisé dans un but d’amélioration de performances</h2>
<p>Les <em>startups</em> qui ont choisi d’utiliser le <em>Machine Learning</em> le font principalement afin de :</p>
<ul>
<li><strong>Obtenir des temps de réponses courts</strong>: réduire le temps de réponse de la prise de décision en utilisation nominale. En effet, dans certains cas où le nombre de données est particulièrement important, il faudrait des mois à un algorithme n’utilisant pas de <em>Machine Learning</em> pour fournir un résultat ;</li>
<li><strong>Améliorer la fiabilité des détections</strong>: réduire le nombre d’erreurs, c’est-à-dire diminuer le taux de faux positif et faux négatifs. Les solutions anti-<em>phishing</em> sont une bonne illustration car celles reposant sur du <em>Machine Learning</em> filtrent avec moins d’erreur qu’une solution dite « classique ».</li>
</ul>
<p>&nbsp;</p>
<h2>Une adoption hétérogène selon le thème du radar…</h2>
<p>L’adoption du <em>Machine Learning</em> varie de manière importante d’une thématique du radar à l’autre. Les thématiques où l’utilisation du <em>Machine Learning</em> est la plus répandue sont : « <em>Application Security</em> », « <em>Endpoint</em> », « <em>Industrial Security</em> » et « <em>Web Security</em> ». On note également quelques cas d’usages particuliers dans d’autres thèmes du radar tel DPO Consulting utilisant du <em>Machine Learning</em> pour aider à la prise de décisions dans le cas d’une évaluation des risques.</p>
<figure id="post-12195 media-12195" class="align-none"><img loading="lazy" decoding="async" class="aligncenter wp-image-12195 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-3-1.png" alt="" width="755" height="694" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-3-1.png 755w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-3-1-208x191.png 208w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-3-1-42x39.png 42w" sizes="auto, (max-width: 755px) 100vw, 755px" /></figure>
<h2>…expliqué par la nature même du Machine Learning.</h2>
<p>Le Machine Learning nécessite un certain nombre de prérequis et de conditions pour fonctionner efficacement. Toute la performance des modèles de Machine Learning repose sur la phase <strong>d’entrainement</strong> où le modèle « apprend » grâce aux données qu’on lui fournit. Ces données, que nous allons illustrer par le cas d’une solution anti-phishing pour boite mail, doivent être :</p>
<ul>
<li><strong>Pertinentes</strong>: c’est-à-dire porteuses d’informations utiles. Dans notre exemple de solution anti-<em>phishing</em>, une information utile est par exemple la présence de certains mots souvent utilisés dans des mails de <em>phishing</em> ; une image ou la taille du fichier mail sont moins utiles ;</li>
<li>En <strong>nombre suffisant</strong>: ce nombre varie selon le cas d’usage et le niveau de précision souhaité. Dans notre exemple de solution anti-<em>phishing</em>, il faudrait probablement entrainer l’algorithme avec quelques dizaines de milliers de mails ;</li>
<li><strong>Variées</strong>: si possible de sources différentes pour plus de résilience de l’algorithme. Dans notre exemple de solution anti-<em>phishing</em>, il serait bon que la base de données d’entrainement contienne des mails issus de différentes campagnes de <em>phishing</em>, reçus par différents entreprises/particuliers, des mails ciblés ou non…, et qu’elle puisse traiter à la fois le contenu du mail mais également les <em>headers</em>, etc. ;</li>
<li><strong>Représentatives </strong>: c’est-à-dire<strong> ne pas</strong> <strong>introduire de biais </strong>et<strong> être à jour</strong>. Dans notre exemple de solution anti-<em>phishing</em>, il convient par exemple de ré-entrainer régulièrement le modèle afin de prendre en compte les dernières tendances en matière de <em>phishing</em>.</li>
</ul>
<p><img loading="lazy" decoding="async" class="aligncenter wp-image-12189 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-4.png" alt="" width="1474" height="806" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-4.png 1474w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-4-349x191.png 349w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-4-768x420.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/10/Image-4-71x39.png 71w" sizes="auto, (max-width: 1474px) 100vw, 1474px" /></p>
<p style="text-align: center;"><em>Schéma de fonctionnement d’une solution basée sur du Machine Learning</em></p>
<p>Dans les domaines où le Machine Learning est le plus utilisé, il s’avère que ces conditions sont plus facilement réunies. En effet, les données nécessaires à l’entrainement sont souvent déjà disponibles dans les équipements en place (log applicatifs, log système, log réseau, alerte anti-virus, …), voire déjà consolidées dans des équipements de sécurité centraux (SIEM, Data Lake…).</p>
<p>&nbsp;</p>
<h2>« Intelligence Artificielle » : Gare à l’effet de mode !</h2>
<p>Si le <em>Machine Learning</em> offre de nouvelles possibilités permettant de grandement améliorer les capacités cybersécurité des entreprises, cette technologie n’est pas en soi une solution miracle. Il est important de bien comprendre ces algorithmes et de garder certains points d’attention en tête avant de se lancer dans l’acquisition d’une telle solution.</p>
<p>Tout d’abord, comme la phase d’entrainement est clé pour la performance du <em>Machine Learning</em>, il faut s’interroger sur sa capacité à fournir à la solution les données nécessaires et suffisantes pour l’apprentissage. Le principal frein remonté par les <em>startups</em> proposant des solutions entrainées avec des données clients est d’ailleurs la<strong> difficulté d’obtenir des données en qualité et quantité suffisante </strong>pour faire tourner leur solution.</p>
<p>Il est également important de réussir à lire au-delà du discours commercial pour comprendre l’apport réel du <em>Machine Learning</em> à la solution, au risque de payer plus cher un outil qui ne serait pas forcément justifié. Et surtout, il faut être conscient que le <em>Machine Learning</em> ne signifie pas ne plus avoir de risques. Ces solutions, comme toute solution de sécurité, répondent à un cas d’usage précis et viennent compléter un ensemble de mesures de sécurité.</p>
<p>Cette mise en garde nous semble nécessaire même si nous avons constaté une utilisation pertinente et justifiée de ces technologies par les startups françaises en cybersécurité dans le cadre de notre analyse.</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/10/radar-startups-2019-33/">L’utilisation du Machine Learning par les startups françaises dans le domaine de la cybersécurité</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>SOAR, UEBA, CASB, EDR and others: which tools do you need for you SOC? (3/3)</title>
		<link>https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-33/</link>
		
		<dc:creator><![CDATA[Amaury Coulomban]]></dc:creator>
		<pubDate>Thu, 18 Apr 2019 10:41:38 +0000</pubDate>
				<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[Ethical Hacking & Incident Response]]></category>
		<category><![CDATA[innovation]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[SOAR]]></category>
		<category><![CDATA[supervision]]></category>
		<category><![CDATA[Threat intelligence]]></category>
		<category><![CDATA[tool]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=11853</guid>

					<description><![CDATA[<p>After the first article which covered &#8220;Extending the scope of detection to new perimeters” (see here), and the second, dedicated to “Enhancing detection through new approaches” (available here)&#8230; this is the conclusion to this (epic!) saga. This last installment will...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-33/">SOAR, UEBA, CASB, EDR and others: which tools do you need for you SOC? (3/3)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>After the first article which covered &#8220;<em>Extending the scope of detection to new perimeters</em>” (see <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-13/">here</a>), and the second, dedicated to <em>“Enhancing detection through new approaches”</em> (available <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-23/">here</a>)&#8230; this is the conclusion to this (epic!) saga. This last installment will cover the last two strategic areas.</p>
<p>&nbsp;</p>
<h2>Improving knowledge of threats and attackers</h2>
<h3>Cyber-threat intelligence (CTI) platforms</h3>
<p>Cyber-Threat Intelligence (CTI or Threat Intel) is a discipline that brings together <strong>the collection, consolidation, and exploitation of all information on cyber-threats</strong>. “Know your enemy&#8221; says Sun Tzu in the Art of War. Although this quote refers to &#8220;physical&#8221; wars, the principle remains true, and is probably even more true when it comes to &#8220;cyber&#8221; battles.</p>
<p>Today, a large number of security approaches rely on <strong>knowledge of attacks</strong>: the signature-based approach of antivirus and IDS solutions, targeted detection scenarios, etc. Even though this trend is reversing (in particular with the detection of anomalies) the vast <strong>majority of security products still rely—and will continue to rely—on the principles of Threat Intelligence</strong>.</p>
<p>With companies’ needs becoming more specific, and attackers ever more specialized, Threat Intel solutions are becoming increasingly popular, with services being offered directly to companies. In addition to commercial offerings, more and more exchange platforms and partnerships are enabling direct collaboration with other companies (in the same sector or geographical area, etc.).</p>
<p>Threat Intel offers a range of services. On the one hand, <strong>‘strategic’ Threat Intel </strong>helps an SOC better understand the context and <strong>specific threats to the company.</strong> To do this, the risks from various ecosystems are studied: geographical, political, ideological, sectoral, etc. This information enables security teams to better understand the threats they face and guides their decisions to define <strong>&#8220;long-term&#8221; strategy</strong> (solutions to be deployed, etc.).</p>
<p>On the other hand, <strong>‘tactical’ Threat Intel</strong> provides more precise information on attackers&#8217; methods, allowing the SOC to facilitate detection and tailor existing measures: new threat scenarios to monitor, ports to block, etc.</p>
<p>In addition to these approaches, <strong>‘technical’ Threat Intel</strong> contributes greatly to the <strong>analysis of security events</strong> by providing, on request (from SOAR in particular—see below), elements that enable the veracity of an alert to be judged: an IP belonging to a botnet, a file hash corresponding to a known virus, etc.</p>
<p>Threat Intelligence approaches are therefore among an SOC’s most versatile tools, enabling it to make the most of existing devices, by remaining up to date and prioritizing the threats to be detected, as well as identifying future tools and measures to be deployed.</p>
<p><strong><u>Examples of Threat Intelligence publishers:</u></strong></p>
<figure id="post-11854 media-11854" class="align-none"><img loading="lazy" decoding="async" class="size-medium wp-image-11854 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-2-354x191.png" alt="" width="354" height="191" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-2-354x191.png 354w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-2-71x39.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-2.png 691w" sizes="auto, (max-width: 354px) 100vw, 354px" /></figure>
<p>&nbsp;</p>
<h2>The standardization and automation of the response process</h2>
<h3>Security Orchestration, Automation and Response</h3>
<p>Security Orchestration, Automation and Response (SOAR) is derived from the combination of three SOC tools: <strong>Security Incident Response Platforms (SIRPs</strong>—more details <a href="http://www.securityinsider-wavestone.com/2016/12/sirp-la-panacee-de-la-reponse-incident.html">here),</a> <strong>Security Orchestration Automation</strong> <strong>(SOA—</strong> orchestration and automation solutions) and some of the functionality of <strong>Threat Intelligence</strong> platforms. In summary, these are platforms <strong>that provide help and automate responses</strong> to security incidents. The solutions are similar to traditional ticketing tools (ITSMs) but include functionalities specific to cybersecurity issues. SOARs offer three main capabilities, each linked to one of the three types of tools from which they are derived.</p>
<p>First, like SIRPs, they allow the <strong>definition of response processes</strong> that are tailored to each security event. These are based on <strong>pre-defined playbooks provided by the publisher,</strong> <strong>published by the community</strong> using the solution, or <strong>created manually</strong> to better tailor things to the needs of the business. In particular, this task requires response teams to establish a clearly defined process that encourages them to ask themselves the right questions when they create response procedures, as well as to capitalize on and retain the knowledge gained.</p>
<p>The benefits of a SOAR, however, come more from the automation of the various stages that follow detection. During the analysis phase, the tool will <strong>automatically</strong> <strong>enrich knowledge about a security event by</strong> <strong>retrieving contextual information about the IS</strong> (identity in the AD, criticality of a resource, etc.), and <strong>querying external Threat Intelligence services</strong> (<em>via</em> APIs) or those that are offered as part of the solution. In addition to automating the enrichment and analysis steps, SOARs <strong>also facilitate the work of analysts: </strong> the investigation of terminals, the interrogation of VirusTotal etc. in one click—when their involvement is required.</p>
<p>But automation doesn’t stop there! Although controversial, the <strong>automation of the response</strong> (via the connection to security equipment, a legacy of SOA) can represent an important gain for security teams: the blocking of a URL, the generation of the signature of a file and its propagation to antivirus tools, the blacklisting of an IP, etc.</p>
<p>The goal of SOARs is clear: to make it easier for the teams in charge of analysis and response, by helping them to define processes and automate tasks to the greatest extent possible. Although SOARs are very adaptable and can therefore help in response to any type of attack, they really shine when it comes to <strong>automating the treatment of common attacks</strong> (such as ransomware, phishing, etc.), which are very repetitive and tie up the resources of response teams.</p>
<p>Once these tasks have been automated, the security teams responsible for responding can <strong>focus on more complex alerts</strong>, where their knowledge adds real value.</p>
<p>Provided they are prepared to put in the initial effort (the formalization of processes, etc.), the likely <strong>reactivity and load gains</strong> are significant. SOARs will change the way SOC teams work, especially with respect to top-level analysts. Even though these solutions are still rarely deployed in France, they are set to become an essential tool for SOCs in the coming years.</p>
<p><strong><u>Examples of SOAR publishers:</u></strong></p>
<p><img loading="lazy" decoding="async" class="size-medium wp-image-11856 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-1-1-437x98.png" alt="" width="437" height="98" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-1-1-437x98.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-1-1-768x172.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-1-1-71x16.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-1-1.png 785w" sizes="auto, (max-width: 437px) 100vw, 437px" /></p>
<p>&nbsp;</p>
<figure id="post-11858 media-11858" class="align-none">
<figure id="post-11865 media-11865" class="align-none"><img loading="lazy" decoding="async" class="aligncenter wp-image-11865 size-full" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-4.png" alt="" width="828" height="485" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-4.png 828w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-4-120x70.png 120w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-4-326x191.png 326w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-4-768x450.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image-0-4-67x39.png 67w" sizes="auto, (max-width: 828px) 100vw, 828px" /></figure>
</figure>
<p>&nbsp;</p>
<p><em>Even though tools are only part of equipping an SOC, each of these solutions has distinct advantages that can help detection teams keep up to date in terms of the evolution of ISs and threats.</em></p>
<p><em>All the tools are promising, and some are coming to maturity. However, it’s important to keep in mind that current toolkits already raise a raft of alerts, which presents a challenge when it comes to processing. It’s therefore advisable to complete the deployment and automation of what exists (using SOARs, for example), before turning toward new solutions.</em></p>
<p><em>And, as for any innovative product, a cool head is needed: the deployment of a new solution must be the result of well-defined needs.</em></p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-33/">SOAR, UEBA, CASB, EDR and others: which tools do you need for you SOC? (3/3)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>SOAR, UEBA, CASB, EDR and others: which tools do you need for you SOC? (2/3)</title>
		<link>https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-23/</link>
		
		<dc:creator><![CDATA[Amaury Coulomban]]></dc:creator>
		<pubDate>Thu, 18 Apr 2019 09:56:28 +0000</pubDate>
				<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[Ethical Hacking & Incident Response]]></category>
		<category><![CDATA[Deceptive security]]></category>
		<category><![CDATA[innovation]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[SOC]]></category>
		<category><![CDATA[supervision]]></category>
		<category><![CDATA[tool]]></category>
		<category><![CDATA[UEBA]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=11835</guid>

					<description><![CDATA[<p>After the first article, which covered &#8220;Extending the scope of detection to new perimeters&#8221; (available here), this second installment is the next in our summer series about the SOC&#8230; &#160; Enhancing detection with new approaches Think identity to detect suspect...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-23/">SOAR, UEBA, CASB, EDR and others: which tools do you need for you SOC? (2/3)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p><em>After the first article, which covered &#8220;Extending the scope of detection to new perimeters&#8221; (available <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-13/">here</a>), this second installment is the next in our summer series about the SOC&#8230; </em></p>
<p>&nbsp;</p>
<h2>Enhancing detection with new approaches</h2>
<h3>Think identity to detect suspect behaviors: UEBA</h3>
<p>User and Entity Behavioral Analysis (UEBA—previously known as UBA) technologies are among the latest tools being used to enhance SOC’s detection arsenals. As their name suggests, they take a specific approach—leaving aside the technical considerations of current solutions (SIEM, etc.), and, instead, analyzing the <strong>behavior of users and entities</strong> (including terminals, applications, networks, servers, connected objects, etc.).</p>
<p>The principle is simple, but its implementation much less so. To be effective, UEBA approaches require a diversity of sources, and a <strong>variety of data formats</strong>. Traditional sources, such as SIEM and log manager(s), are employed and, in addition, certain resources (such as ADs, proxies, BDDs, etc.) are often used directly.</p>
<p>But, to perfect their detection capabilities, UEBA solutions also draw on new sources: <strong>information on users</strong> (HR applications, badge management, etc.), exchanges between employees (chats, video exchanges, emails, etc.), or any other relevant sources (business applications that need to be monitored, etc.).</p>
<p>Taking all this information together, UEBA solutions analyze the behavior of users (and entities) to identify potential threats. They can use static rules, in the form of <strong>signatures to be detected</strong> (which are often already implemented in SIEM solutions): simultaneous connections from two different locations, or unusual times of use, etc.</p>
<p>But the real strength of UEBA lies in the use of Machine Learning algorithms to detect <strong>changes in the behavior</strong> of users or services: suspicious business-function operations, access to critical, previously unused applications during holidays, unusual data transfers, etc.</p>
<p>Although UEBA was initially conceived to counter fraud, its role has gradually broadened to cover some areas that typically pose problems for SIEM: data theft, compromise or loan of application accounts, terminal or server infection, privilege abuse, etc.</p>
<p>Thus, today, UEBA is positioning itself as complementary to SIEM, adding to the latter’s &#8220;technical&#8221; approach by providing &#8220;user&#8221; visibility, and bringing an additional layer of intelligence to the analysis.</p>
<p>The market’s view is that, in the coming years, UEBA solutions will probably cease to exist in their present form. Instead, they’ll be integrated into existing solutions (SIEM, EDR, etc.), changing their form from products to functionalities.</p>
<p><strong><u>Examples of UEBA publishers:</u></strong></p>
<p><img loading="lazy" decoding="async" class="size-medium wp-image-11837 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image1-1-437x159.png" alt="" width="437" height="159" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image1-1-437x159.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image1-1-768x280.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image1-1-71x26.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image1-1.png 1339w" sizes="auto, (max-width: 437px) 100vw, 437px" /></p>
<p>&nbsp;</p>
<h3>Trapping attackers: deceptive security</h3>
<p>Deceptive Security can be considered as a move to <strong>a higher form of the Honey Pot approach</strong>. Here, <strong>decoys</strong>, in the form of data, agents, or dedicated environments, are distributed widely throughout all, or part of, the IS.</p>
<p>Depending on the needs and solutions, Deceptive Security tools can serve two purposes. By <strong>diverting the attention of attackers away from real resources</strong> and leading them down false trails, they can act as a means of <strong>protection</strong>.</p>
<p>But above all, monitoring these decoys can <strong>detect</strong> threats that are spreading within the IS. In fact, the decoys have no other use than to <strong>lure potential attackers or to provide false information</strong>; any communication with them is then, by definition, suspect.</p>
<p>This type of solution isn&#8217;t a replacement for existing measures but addresses very specific use cases where conventional detection approaches are ineffective: APTs, which are specially designed to circumvent them, and, more broadly, horizontal movements within the IS.</p>
<p>For more detail on Deceptive Security solutions, read our dedicated article <a href="https://www.riskinsight-wavestone.com/en/2017/11/deceptive-security-comment-arroser-larroseur/">here</a>.</p>
<p><strong><u>Examples of Deceptive Security publishers:</u></strong></p>
<p><img loading="lazy" decoding="async" class="size-medium wp-image-11839 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/Image2-2-437x185.png" alt="" width="437" height="185" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/Image2-2-437x185.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/Image2-2-768x326.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/Image2-2-71x30.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/Image2-2.png 1308w" sizes="auto, (max-width: 437px) 100vw, 437px" /></p>
<p>&nbsp;</p>
<h3>Detecting weak signals on the network: machine learning sensors</h3>
<p>Traditional detection sensors (IDPSs), based on traffic analysis and comparisons with known attack signatures, are not particularly effective when it comes to <strong>detecting subtle attacks</strong> (APTs, etc.) <strong>or unknown</strong> <strong>threats</strong> (0-day, etc.). To overcome this problem, new-generation IDPSs integrate Machine Learning capabilities (sometimes presented as Artificial Intelligence) into their detection arsenals.</p>
<p>Depending on the solution, two types of use for Machine Learning can be distinguished. On the one hand, the use of these algorithms in <strong>supervised mode</strong> to learn to <strong>recognize the behavior of certain attacks</strong>, or phases of attack (during the active phases): command and control, scans, lateral movements, data leakage, etc.</p>
<p>On the other, once the sensor has been deployed, adjustment of the detection thresholds to the client context is also based on Machine Learning algorithms (something already used by many traditional IDPS solutions).</p>
<p>This mode of operation enables rapid deployment (solutions that can be used out-of-the-box with shorter learning phases), and a better ability to detect previously characterized attacks. Conversely, the detection of attacks that have not been subject to learning, or are completely unknown, remains difficult.</p>
<p>In contrast to this approach, some solutions rely on <strong>unsupervised learning</strong> to detect attacks. Here, during deployment, sensors are positioned on the network to observe the traffic and learn how to recognize what constitutes legitimate traffic.</p>
<p>Once the learning phase is over, the sensors can <strong>detect anomalies</strong> and raise alerts when suspicious behavior occurs. This approach enables the detection of unknown attacks, but generally requires a longer learning phase if it is to be effective and achieve an acceptable false alert rate.</p>
<p>In both cases, the &#8220;Machine Learning<em>&#8220;</em> sensors make it possible to enhance an SOC’s arsenal (which, today, is mostly aimed at detecting known attacks) through detection capabilities that can <strong>discern complex, unknown attacks</strong>, or those designed to circumvent conventional security approaches.</p>
<p>Initial feedback from the field shows that these technologies can indeed detect threats that bypass conventional security measures. False positives, however, are very common (the learning curve varies widely, depending on solutions and contexts), and it remains difficult to judge how comprehensively threats are being detected.</p>
<p>&#8220;Machine Learning&#8221; sensors therefore have a definite future among SOC tools, even if they need to further mature to reach their full potential.</p>
<p><strong><u>Examples of Machine Learning sensor publishers:</u></strong></p>
<figure id="post-11841 media-11841" class="align-none"><img loading="lazy" decoding="async" class="size-medium wp-image-11841 aligncenter" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image3-2-437x76.png" alt="" width="437" height="76" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image3-2-437x76.png 437w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image3-2-768x134.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image3-2-71x12.png 71w, https://www.riskinsight-wavestone.com/wp-content/uploads/2019/04/image3-2.png 1377w" sizes="auto, (max-width: 437px) 100vw, 437px" /></figure>
<p>&nbsp;</p>
<p><em>You can find our third, and final, article in this series <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-33/">here</a>.</em></p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2019/04/new-tools-soc-23/">SOAR, UEBA, CASB, EDR and others: which tools do you need for you SOC? (2/3)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Revolution technologique : quelle perspective pour la lutte contre la fraude ? (2/2)</title>
		<link>https://www.riskinsight-wavestone.com/en/2018/11/quelle-perspective-pour-la-lutte-contre-la-fraude-22/</link>
		
		<dc:creator><![CDATA[m@THIEU]]></dc:creator>
		<pubDate>Fri, 02 Nov 2018 18:17:47 +0000</pubDate>
				<category><![CDATA[Cyber for Financial Services]]></category>
		<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[Banque]]></category>
		<category><![CDATA[confiance]]></category>
		<category><![CDATA[détection]]></category>
		<category><![CDATA[financial services cyber]]></category>
		<category><![CDATA[fraude]]></category>
		<category><![CDATA[Machine learning]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=11400/</guid>

					<description><![CDATA[<p>Après un premier article présentant les nouvelles technologies que l&#8217;on trouve dans la lutte contre la fraude, ce deuxième article présente comment intégrer ces technologies au mieux. Le dilemme de l&#8217;évolution des dispositifs antifraude : quels leviers pour intégrer ces...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2018/11/quelle-perspective-pour-la-lutte-contre-la-fraude-22/">Revolution technologique : quelle perspective pour la lutte contre la fraude ? (2/2)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p><em>Après un premier article présentant les nouvelles technologies que l&#8217;on trouve dans la lutte contre la fraude, ce deuxième article présente comment intégrer ces technologies au mieux.</em></p>
<h2>Le dilemme de l&#8217;évolution des dispositifs antifraude : quels leviers pour intégrer ces technologies ?</h2>
<p>Faisant écho à ces problématiques, l’écosystème des éditeurs s’est organisé pour proposer des solutions antifraude s’appuyant sur ces technologies. Ainsi éditeurs et start-ups se sont très largement développés, partout dans le monde (plus de 150 fournisseurs ont été recensés au sein du radar « Antifraude » Wavestone). Le besoin de lutte antifraude a en effet par nature une dimension internationale, notamment dans la protection des flux monétaires qui sont rarement limités à un seul pays.</p>
<figure id="post-11405 media-11405" class="align-center"><img loading="lazy" decoding="async" class="aligncenter wp-image-11405" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-2.png" alt="" width="691" height="551" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-2.png 894w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-2-239x191.png 239w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-2-768x613.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-2-49x39.png 49w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-2-155x125.png 155w" sizes="auto, (max-width: 691px) 100vw, 691px" /></figure>
<p style="text-align: center;"><em>Figure 2 :</em><em>Exemple du radar des éditeurs antifraude Wavestone (extrait non exhaustif)</em></p>
<p>Même si la lutte contre la fraude apparait comme un <em>use case</em> de choix pour démontrer le ROI du Machine Learning (réduction du nombre de fraudes, automatisation de la détection…) et au-delà du choix de la stratégie d’outillage de lutte contre la fraude au regard de la maturité du marché, les questions à se poser doivent rester celles d’une solution SI « standard » (exploitation, maintenance, évolutivité…).</p>
<p>Si les coûts d’infrastructures nécessaires à la mise en place d’outils basés sur le Machine Learning et le big data ne sont pas négligeables, ils permettent de créer un environnement favorable à l’exploitation de la richesse des données pour divers usages (maintenance prédictive des serveurs, connaissance client, etc.) en gardant à l’esprit les garde-fous mis en place par le RGPD.</p>
<figure id="post-11407 media-11407" class="align-center"><img loading="lazy" decoding="async" class="aligncenter wp-image-11407" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-3.png" alt="" width="1026" height="497" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-3.png 1361w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-3-394x191.png 394w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-3-768x372.png 768w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-3-71x34.png 71w" sizes="auto, (max-width: 1026px) 100vw, 1026px" /></figure>
<p style="text-align: center;"><em>Figure 3 : Où peut-on agir avec le Machine Learning : exemple d’une banque</em></p>
<h2>Une nouvelle cible à atteindre : une approche &#8220;sans couture&#8221; technologique et métier</h2>
<p>Face aux nouveaux enjeux et l’apport des technologies émergentes, une nouvelle stratégie antifraude doit être désormais définie.</p>
<p>La mise en place d’un dispositif <strong>de détection globale de confiance qui devra respecter 5 grands principes.</strong></p>
<ul>
<li>L’efficience et l’automatisation : il bénéficiera d’une détection à plusieurs critères (moteur de règles et Machine Learning) et d’une efficacité opérationnelle optimisée par l’automatisation de mesures allant de l&#8217;augmentation du niveau d&#8217;authentification demandé au gel d&#8217;un virement.</li>
<li>L’évolutivité et l’omnicanal : il intègrera plusieurs périmètres dans la détection avec une logique « sans couture » entre le monde cyber et le monde « hors cyber » et sera conçu pour permettre l’intégration de nouvelles données disponibles (ex : données de biométrie comportementale).</li>
<li>La visibilité et l’exploitabilité : il fournira la visibilité (<em>reporting</em>) et l’explication des résultats de détection, aux équipes antifraude, aux clients et également aux régulateurs.</li>
<li>La conformité et la sécurisation : il respectera les obligations en matière de détection ainsi que les réglementations (RGPD), et traitera les risques inhérents au Machine Learning (tentatives de <em>poisoning</em>, compréhension par l’attaquant du modèle…).</li>
<li>La gouvernance transverse cybersécurité et métier : une collaboration étroite des équipes de détection de menaces cyber et métier antifraude, dépassant les silos encore trop présents, permettra une réponse globale avec une vision 360 des menaces et fera le meilleur usage des données disponibles.</li>
</ul>
<p>Pour bénéficier de tous les atouts apportés par cette nouvelle stratégie de détection, il conviendra également de ne pas négliger les systèmes d’investigation et de réaction.</p>
<p>Une décentralisation partielle de la lutte contre la fraude, impliquant les conseiller bancaires, permettra une plus grande capacité d’investigation. Ayant la connaissance la plus fine de leurs clients, ces derniers représentent un atout dans le processus d’investigation.</p>
<p>De plus, la biométrie comportementale et le machine learning permettent de fournir une meilleure visibilité sur le niveau de confiance qu’on peut accorder à l’utilisateur. Une fois le niveau de confiance défini, il est donc possible d’adapter les niveaux d’authentification demandés en conséquence. Une contribution adaptée et graduée de l’utilisateur permettra ainsi de réduire le nombre d’alertes émises.</p>
<p>La mise en place d’une nouvelle cible antifraude n’est pas seulement pour assurer une réponse adaptée à un changement de contexte mais aussi pour anticiper une vague de fond qui s’amorce aujourd’hui. La détection de fraudes deviendra à l’avenir de plus en plus complexe compte tenu d’une digitalisation qui va continuer à s’accélérer, en particulier sur les moyens de paiement. L’émergence de nouveaux acteurs, comme les <em>Fintechs</em>, et la désintermédiation grandissante des banques vont notamment entraîner un appauvrissement de la donnée disponible. Les dispositifs antifraude sont donc voués à évoluer en profondeur afin de garder et développer leur efficacité.</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2018/11/quelle-perspective-pour-la-lutte-contre-la-fraude-22/">Revolution technologique : quelle perspective pour la lutte contre la fraude ? (2/2)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Revolution technologique : quelle perspective pour la lutte contre la fraude ? (1/2)</title>
		<link>https://www.riskinsight-wavestone.com/en/2018/10/quelle-perspective-pour-la-lutte-contre-la-fraude-12/</link>
		
		<dc:creator><![CDATA[m@THIEU]]></dc:creator>
		<pubDate>Wed, 31 Oct 2018 08:53:45 +0000</pubDate>
				<category><![CDATA[Cyber for Financial Services]]></category>
		<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[anti fraude]]></category>
		<category><![CDATA[Banque]]></category>
		<category><![CDATA[confiance]]></category>
		<category><![CDATA[détection]]></category>
		<category><![CDATA[financial services cyber]]></category>
		<category><![CDATA[fraude]]></category>
		<category><![CDATA[Machine learning]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=11382/</guid>

					<description><![CDATA[<p>La protection des actifs, notamment contre leur vol ou leur détournement, est depuis longtemps un enjeu majeur des entreprises. Les dispositifs de lutte contre la fraude s’organisent autour de trois grands piliers : la prévention, la détection et la réaction. Ces...</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2018/10/quelle-perspective-pour-la-lutte-contre-la-fraude-12/">Revolution technologique : quelle perspective pour la lutte contre la fraude ? (1/2)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>La protection des actifs, notamment contre leur vol ou leur détournement, est depuis longtemps un enjeu majeur des entreprises. Les dispositifs de lutte contre la fraude s’organisent autour de trois grands piliers : la prévention, la détection et la réaction. Ces dispositifs historiques font aujourd’hui face à de multiples évolutions qui offrent également des opportunités sans précédent que les entreprises se doivent de saisir.</p>
<p>Les expériences et expérimentations du secteur bancaire, en avance sur ces problématiques, permettent d’envisager les perspectives à venir et fournit donc un prisme d’analyse utile aussi pour les autres secteurs.</p>
<h2>Menaces, usages, réglementations : trois évolutions majeures qui impliquent des adaptations des dispositifs antifraude</h2>
<p>Les transformations business et technologiques dans l’ensemble des secteurs d’activité font apparaitre des évolutions impactant directement les dispositifs antifraude historiques.</p>
<p>Les menaces évoluent, les <strong>pratiques de fraude se sont professionnalisées</strong> avec de nouveaux outils et de nouvelles pratiques. Prenons l&#8217;exemple du phishing : même sans connaissances informatiques, une cellule de fraudeurs entrainée peut désormais acheter un kit de phishing prêt à l&#8217;emploi et met en moyenne seulement trois minutes entre une connexion frauduleuse et une sortie d&#8217;argent. Les<strong> tentatives de fraude se sont donc démultipliées</strong> ces dernières années.</p>
<p>En parallèle, les usages évoluent vers une <strong>plus forte digitalisation</strong>, parfois dictés directement par <strong>des évolutions réglementaires</strong>, à la fois à destination des clients ou à destination des collaborateurs. Par exemple la mise en place de l’Instant Payment en France ou de la directive européenne sur les services de paiement 2ème version (DSP2) prévoient des virements instantanés. Ces nouveaux usages accélèrent les transactions financières entre les acteurs entrainant par la même occasion des <strong>besoins d’évaluation instantanée</strong> des risques de fraude. De plus, cette multiplication des canaux de paiement entraîne une<strong> augmentation de la surface d&#8217;attaque</strong> avec notamment une diversification des malwares bancaires aux applications mobiles ainsi que l&#8217;apparition de pratiques d&#8217;ingénierie sociale complexes <strong>multicanales</strong> et appuyées sur une compréhension des processus métier.</p>
<p>La diversification des fraudes, la volumétrie associée et l&#8217;augmentation des besoins de traitement instantané rend le traitement manuel presque impossible. La création de règles d&#8217;alertes plus restrictives pour minimiser les volumes ferait cependant courir le risque de manquer un grand nombre de fraudes.</p>
<p>Dans ce nouveau paysage, où la fraude devient de plus en plus technologique et peut avoir de multiples origines (clients, donneurs d’ordres, sous-traitants, fournisseurs, administrateurs…), les stratégies de détection doivent évoluer et passer d’une détection réactive des fraudes connues à une détection proactive des menaces encore inconnues.</p>
<h2>Les nouvelles technologies, l&#8217;avenir de l&#8217;antifraude pour faire face à ce nouveau paradigme</h2>
<p><em>L’approche historique de la détection de fraude est fondée principalement sur la définition de règles unitaires générant une alerte en cas de non-respect d’un des critères et sur la corrélation d’événements, consistant à mettre en œuvre des règles métiers plus avancées prenant en compte plusieurs types de données, afin de générer une alerte lorsque apparaissent des indices du déroulement d’un scénario de fraude connu.</em></p>
<p>Cette approche tout en demeurant efficace pour la détection de fraudes connues, par exemple dans la lutte contre le <em>phishing</em>, n’est plus suffisante pour faire face aux évolutions en cours. Une approche hybride doit être enrichie sur la base des nouvelles technologies présentes sur le marché (intelligence artificielle / Machine Learning, biométrie comportementale&#8230;) qui offrent deux grandes perspectives d’enrichissement des dispositifs actuels.</p>
<ol>
<li><strong> </strong>Passer d’une détection de masse à une détection individualisée beaucoup plus fine qui va se concentrer sur les changements de comportement.</li>
</ol>
<p>Le Machine Learning a la possibilité de créer des profils individuels à chaque client. Ces profils, composés de variables construites à l’aide des données collectées, vont permettre de modéliser le comportement. Ainsi, les algorithmes utilisés vont comparer le profil du client (et donc son habitude) avec un événement donné et, de fait, remonter une anomalie lorsqu’une divergence apparait. A noter que le nombre de variables manipulées peut facilement dépasser plusieurs dizaines, là où des règles statiques n’intègreront que quelques paramètres, permettant ainsi de démultiplier le potentiel de détection ou de réduire le nombre de faux positif.</p>
<ol start="2">
<li>Diversifier les périmètres à couvrir en bénéficiant des économies d’échelle apportées par ces technologies (mutualisation des infrastructures big data, massification des données, automatisation permettant un gain de temps pour les analystes…)</li>
</ol>
<p>Ces technologies ont la capacité d’intégrer et corréler, grâce à des <em>Data Lake</em> sur lesquels elles s’appuient, des volumétries importantes de données brutes, techniques ou métiers (logs applicatifs, connaissances clients, opérations financières…) et d’apporter un potentiel d’enrichissement par des données extérieures (liste de surveillance, transformation d’adresses IP en localisations physiques…). Pour tirer le maximum de bénéfices des systèmes antifraudes, le <em>Data Lake</em> doit disposer d’un historique de données pertinentes et conformes, à savoir 13 mois pour des personnes physiques et 6 mois pour des personnes morales.</p>
<p>Pour autant ces technologies ne sont pas « magiques », elles nécessitent d’avoir à disposition des données en qualité et en quantité afin de réaliser un important travail préparatoire sur la construction des variables qui portent les capacités de détection des algorithmes. Cette phase de construction nécessite un apport d’expertise à la fois métier mais aussi technologique (<em>datascience</em>, développeurs, etc.).</p>
<figure id="post-11384 media-11384" class="align-center"><img loading="lazy" decoding="async" class="aligncenter wp-image-11384" src="https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-1.png" alt="" width="459" height="647" srcset="https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-1.png 519w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-1-135x191.png 135w, https://www.riskinsight-wavestone.com/wp-content/uploads/2018/11/schema-1-28x39.png 28w" sizes="auto, (max-width: 459px) 100vw, 459px" /></figure>
<p style="text-align: center;"><em>Figure 1 &#8211; les principales méthodes de détection</em></p>
<p>Le choix des algorithmes n’est également pas à négliger, notamment d’un point de vue de la transparence. En effet, certains outils sont basés sur des algorithmes où les résultats sont difficilement justifiables. Le manque de visibilité sur les critères d’établissement des résultats entraine une remontée d’alertes en « boîte noire » et ne permet pas toujours de justifier les blocages aux clients. Une trop grande opacité peut également avoir des conséquences juridiques, voir être illégale, lorsque ces alertes ont des conséquences directes sur des clients.</p>
<p>Si ce premier article présente quelles sont les technologies d&#8217;avenir dans la lutte contre la fraude, un deuxième article viendra détailler comment les intégrer au mieux.</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2018/10/quelle-perspective-pour-la-lutte-contre-la-fraude-12/">Revolution technologique : quelle perspective pour la lutte contre la fraude ? (1/2)</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
		<item>
		<title>Le Machine Learning, quelles opportunités et quels enjeux dans une Banque en Ligne moderne ?</title>
		<link>https://www.riskinsight-wavestone.com/en/2016/11/machine-learning-opportunites-enjeux-banque-ligne-moderne/</link>
		
		<dc:creator><![CDATA[ArtHuRC0ugeT]]></dc:creator>
		<pubDate>Wed, 16 Nov 2016 08:22:50 +0000</pubDate>
				<category><![CDATA[Cyber for Financial Services]]></category>
		<category><![CDATA[Cybersecurity & Digital Trust]]></category>
		<category><![CDATA[Banque]]></category>
		<category><![CDATA[financial services cyber]]></category>
		<category><![CDATA[fraude]]></category>
		<category><![CDATA[Machine learning]]></category>
		<category><![CDATA[satisfaction client]]></category>
		<category><![CDATA[technologies]]></category>
		<guid isPermaLink="false">https://www.riskinsight-wavestone.com/?p=9303</guid>

					<description><![CDATA[<p>La Banque en Ligne connaît de profondes mutations, tant sur le plan des enjeux métiers – avec des périmètres de plus en plus larges et de moins en moins ensilotés – que sur celui des enjeux règlementaires (Instant Payment, DSP2…)....</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2016/11/machine-learning-opportunites-enjeux-banque-ligne-moderne/">Le Machine Learning, quelles opportunités et quels enjeux dans une Banque en Ligne moderne ?</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></description>
										<content:encoded><![CDATA[<p>La <strong>Banque en Ligne</strong> connaît de <strong>profondes mutations</strong>, tant sur le plan des <strong>enjeux métiers</strong> – avec des périmètres de plus en plus larges et de moins en moins ensilotés – que sur celui des <strong>enjeux règlementaires</strong> (<em>Instant Payment</em>, <a href="https://www.riskinsight-wavestone.com/en/2016/01/la-dsp2-une-directive-sur-les-services-de-paiements-qui-prone-la-concurrence/">DSP2</a>…). Les cas de fraude se multiplient et les schémas d’attaque menés par des fraudeurs de plus en plus aguerris se diversifient. Pour accompagner ces nombreux changements, les méthodes et les <strong>processus métiers</strong> se doivent d’être <strong>plus efficaces, mieux adaptés, et plus flexibles</strong>. Les méthodes de <em>Machine Learning</em>, malgré leur récente démocratisation, permettent d’épouser la révolution digitale de la Banque en Ligne.</p>
<h2>Machine Learning, démystification et opportunités</h2>
<p>Le <em>Machine Learning</em> est <a href="http://www.wired.co.uk/article/machine-learning-ai-explained">une forme d’intelligence artificielle</a> qui consiste à apprendre et modéliser un phénomène pour mieux le comprendre et le maîtriser. Pour cela, un ou plusieurs algorithmes permettent d’établir des corrélations entre les évènements qui composent ce phénomène. On distingue deux grands types de méthodes :</p>
<ul>
<li>Les méthodes supervisées, qui créent des modèles à partir d’une base de données d’exemples (généralement des cas déjà traités et validés).</li>
<li>Les méthodes non-supervisées, qui n’ont pas besoin d’une base de données d’exemples</li>
</ul>
<p>Pour illustrer la différence entre les deux méthodes, on peut considérer le cas de la détection de fraude. Pour s’entraîner et créer des modèles précis, les méthodes supervisées utiliseraient en entrée des données déjà traitées et marquées comme étant liées ou non à des cas de fraude (schémas de fraude connus), alors que les méthodes non-supervisées utiliseraient des données brutes issues des applications du SI afin de modéliser les comportements normaux. Conceptuellement, cela revient à modéliser respectivement ce qui est anormal (la fraude – en ayant assez de données pour que cette représentation soit fidèle) ou ce qui est normal (en détectant <em>de facto </em>les fraudes lorsque l’on s’éloigne de cette normalité).</p>
<p>Tous les algorithmes ne se valent pas. Chacun possède des qualités et des défauts qu’il faut savoir peser et qui dépendent en grande partie des données d’entrée, propres à chaque cas métiers. Il est important de <strong>choisir des données à la fois pertinentes et disponibles en quantité suffisante</strong> pour obtenir des résultats probants. Dans le contexte de la Banque en Ligne, <strong>de nombreuses données peuvent faire l’objet de <em>Machine Learning</em></strong><em> </em>:</p>
<ul>
<li>Habitudes de transaction : montants des virements, pays destinataires…</li>
<li>Habitudes de connexion : heure de connexion, user-agent, <em>device</em> utilisé…</li>
<li>Habitudes de navigation : parcours client, vélocité de navigation…</li>
<li>Données comportementales : vitesse de frappe, déplacement de la souris…</li>
<li>Données marketing : produits consommés, libellés des virements…</li>
</ul>
<p>Correctement exploitée par des algorithmes de <em>Machine Learning</em>, la conjugaison de ces différentes données, précédée par un traitement tirant le maximum de leur valeur, peut permettre des <strong>résultats bien plus significatifs</strong> que ne le permettent les méthodes classiques. <strong>La connaissance client (<em>KYC</em>), </strong>en <a href="https://www.internetretailer.com/commentary/2016/10/20/combat-fraud-getting-know-your-customer-better">exploitant par exemple le parcours client</a> type<strong>, la détection de fraude</strong>, en utilisant les habitudes de virement pour identifier des cas suspects (pays de connexion, distribution des montants…),<strong> ou encore le marketing </strong>à travers <a href="http://www.huffingtonpost.com/advertising-week/machine-learning-is-about_b_12649810.html">la connaissance des habitudes</a> de consommations (analyse des libellés, regroupements des achats par catégories…) peuvent notamment largement tirer parti de ces données.</p>
<h2>Concrètement, quels sont les gains du Machine Learning ?</h2>
<p><strong>Tout d’abord, connaître le client et mieux adresser ses besoins</strong></p>
<p>Le <em>Machine Learning </em>permet de tirer le maximum de valeur des données <strong>en singularisant les modèles</strong> là où les méthodes « classiques » reposent sur un modèle commun à l’ensemble des données d’entrée. Par exemple dans le cas de la détection de fraude, les modèles de règles « classiques » reviennent à élaborer un modèle qui sera commun à tous les clients, sans tenir compte de leur unicité, là où le <em>Machine Learning </em>permettra une détection plus efficace en associant un profil à chaque client et en effectuant une surveillance et une détection propres à ce profil. Ce raisonnement vaut pour tous les autres domaines d’applications, et permet, <em>in fine</em>, <strong>une meilleure représentation et une meilleure connaissance</strong> non plus « du client » au sens large, mais <strong>de chacun des clients</strong>.</p>
<p><strong>Le Machine Learning permet également d’offrir de nouveaux services</strong></p>
<p>Au-delà de l’amélioration notable des résultats basés sur les <em>KPI </em>classiques (taux de faux positifs, taux de détection…), le <em>Machine Learning </em>permet une <strong>création de valeur en termes de gains financiers</strong> en personnalisant les outils dont profite le client. Cela peut parfaitement <strong>servir de socle à une offre commerciale</strong> qui reposerait par exemple sur la personnalisation de ses seuils par le client ou sur la possibilité d’être alerté en temps réel lorsqu’une information marketing, commerciale ou concernant sa sécurité a particulièrement du sens. <strong>Certaines banques ont d’ailleurs déjà franchi le pas</strong>, en offrant la possibilité à leurs clients Entreprises d’être alertés en cas de virements qui dépassent des seuils personnalisés préalablement établis.</p>
<p><strong>Finalement, le Machine Learning est aussi une occasion de moderniser les outils et rester à l’état de l&#8217;art</strong></p>
<p>Lancer un projet de <em>Machine Learning</em> permet de communiquer sur le sujet et de profiter du <em>buzzword</em> pour générer de la <strong>satisfaction </strong>chez un certain nombre de <strong>client de plus en plus sensible à des problématiques de sécurité ou de confidentialité</strong>, tout en s’assurant d’être<strong> à l’état de l’art du marché</strong>. Cela peut également permettre de <strong>moderniser des outils existants</strong> en vue des changements qui vont continuer d’opérer dans la Banque en Ligne <strong>au gré des nouvelles règlementations</strong> et des exigences techniques (temps réel notamment avec <a href="http://www.europeanpaymentscouncil.eu/index.cfm/sepa-instant-payments/what-are-instant-payments/"><em>Instant Payment</em></a>) et métiers qui en découlent. Dans ce cadre, on voit par exemple éclore des méthodes de <em>Machine Learning </em>pour la surveillance des marchés et lutter contre les délits d’initiés.</p>
<p>En conclusion, la pleine maîtrise technique du <em>Machine Learning </em>coïncide avec de <strong>nouveaux besoins et de nouvelles exigences</strong> exprimés dans la Banque en Ligne moderne. Embrasser cette évolution présente de nombreux avantages, <strong>de l’amélioration des performances et des résultats à la satisfaction des clients, en passant par une meilleure flexibilité technique</strong>. La maîtrise des différentes méthodes doit permettre un <strong>renouvellement des traitements et des processus métiers</strong>, en les rapprochant du client (aujourd’hui ces méthodes sont plutôt transparentes pour lui). Dans le cas de la lutte contre la fraude, on peut par exemple imaginer de nombreux cas autour de <em>l’alerting </em>et des contre-mesures, comme une vérification par authentification forte en cas de suspicion, ou des informations reçues en temps réel pour mieux impliquer les clients.</p>
<p>Cet article <a href="https://www.riskinsight-wavestone.com/en/2016/11/machine-learning-opportunites-enjeux-banque-ligne-moderne/">Le Machine Learning, quelles opportunités et quels enjeux dans une Banque en Ligne moderne ?</a> est apparu en premier sur <a href="https://www.riskinsight-wavestone.com/en/">RiskInsight</a>.</p>
]]></content:encoded>
					
		
		
			</item>
	</channel>
</rss>
