Deep Neural Networks for Hackers: Methods, Applications, and Open Source Tools

Presented at Black Hat USA 2018, Aug. 8, 2018, 11:15 a.m. (50 minutes).

Anyone who keeps up with technology news has read about deep neural networks beating human champions at Go, achieving breakthrough accuracy at voice recognition, and generally driving today's major advances in artificial intelligence. Little has been said, however, about the ways deep neural network approaches are quietly achieving analogous breakthroughs in intrusion detection. My goal with this presentation is to change this, by demystifying deep neural network (deep learning) concepts, presenting research that shows that we can use deep learning methods to achieve breakthrough cyber-attack detection, and by introducing open source deep learning tools, so that attendees can leave equipped to start their own security deep neural network research.

The presentation will start with an intuitive overview of deep neural networks, introducing the ideas that allow neural networks to learn from data and make accurate decisions about whether, for example, files are good or bad, or a given URL or domain name is malicious. After introducing deep neural networks, I'll go on to describe a case study: a deep neural network that uses a convolutional neural network approach to detect previously malicious URLs at higher accuracy than any previously reported techniques, which we have evaluated on live, real world data. Finally, I'll introduce the open source tools available for doing security deep learning research, giving attendees a starting place for incorporating deep neural networks into their own security practice.


Presenters:

  • Joshua Saxe - Chief Data Scientist, Sophos
    Joshua Saxe is Chief Data Scientist at Sophos, where he focuses on inventing, evaluating and deploying deep learning detection models in support of endpoint and network security solutions.

Links:

Similar Presentations: