Explore the systemic deficiencies in machine learning for malware detection in this 45-minute BSidesLV conference talk. Delve into the evolution of the security landscape over the past 30 years, examining sandbox evasion techniques and current security postures. Gain insights into supervised machine learning, its potential vulnerabilities, and common model problems. Discover machine learning security solutions and learn about obfuscation techniques, balancing replacement and addition, and efficacy results from the speakers' lab experiments. Understand the benefits and challenges of vulnerability testing, continuous learning, and crowd-sourcing in improving malware detection systems. Examine feature vectors and their role in enhancing machine learning models for cybersecurity applications.
Defeating Machine Learning - Systemic Deficiencies for Detecting Malware
Overview
Syllabus
Intro
Who are we
Agenda
Security landscape 30 years ago
Sandbox evasion techniques
Security posture today
Machine learning
Supervised machine learning
Potential vulnerabilities of machine learning
Common model problem
Machine Learning Security Solutions
Our Lab
Obfuscating
Balancing Replacement and Addition
Efficacy Results
Benefits
Summary
Vulnerability Testing
Continuous Learning
Crowd Sourcing
Feature Vectors
Taught by
BSidesLV
Related Courses
-
CheckPlease - Payload-Agnostic Sandbox Detection
-
Bot vs. Bot for Evading Machine Learning Malware Detection
-
PowerShell Classification - Life, Learning, and Self-Discovery
-
Defeating Machine Learning - What Your Security Vendor Is Not Telling You
-
Static Detection of Novel Malware Using Transfer Learning with Deep Neural Networks
-
Do I Have a Signature to Detect That Malware
