Machine-Learning Technologies Help Agencies Develop Highly Intelligent Security Postures

Sergey Tarasov/Shutterstock.com

Featured eBooks
Space Tech
Read Now

CDM

Read Now

Digital Transformation

Read Now
By David Mihelcic

By David Mihelcic

|

Machine learning makes life much more manageable for network security operators.

Dave Mihelcic is the head of federal strategy and technology at Juniper Networks.

If the recent spate of alleged Russian cyberattacks has taught us anything, security breaches can happen so quickly and stealthily, the damage will be done before anyone even realizes there was a hack.

In fact, as malicious actors become more insidious, federal network security managers are finding the reaction time between identifying and mitigating potential threats has gone from minutes to milliseconds. Factor in the volume and complexity of the threats, and it becomes evident the challenge has grown well beyond what can be managed through manual intervention.

» Get the best federal technology news and ideas delivered right to your inbox. Sign up here.

To successfully combat these challenges, cyber operators should consider incorporating machine-learning capabilities into their toolkit. Once used within the Defense Department primarily for real-world target recognition, machine-learning technologies have evolved to become very effective at quickly detecting and responding to potential cyber threats. Through analytics and predetermined risk factors established by cyber operators, these highly intelligent and adaptable systems can evolve to “learn” about threats as they happen and apply that knowledge to better fortify the network in anticipation of future threats.

Machine-learning tools can interact with other components of the network infrastructure to create a remarkable level of advanced threat protection. The tools can continuously evaluate and monitor web and email files in the hunt for evasive malware and use various cloud-based technologies and resources to identify risks.

They can also be used in combination with other network security solutions, including firewalls and edge and core routing and switching infrastructures, to fend off attacks and isolate infected hosts.

Let’s take a look at a hypothetical example to illustrate how machine learning works for cybersecurity. An agency’s analytics-based machine learning system may include a predetermined set of risk factors. When the system has detected enough of these risk factors have been triggered, it will take a predetermined action to help protect the network—for example, blocking access to the network.

At this point, the network security operator can step in and help “teach” the machine. If the operator examines the incident and determines it does not pose a threat, the IT team may remove some of the mitigation protocols. This effectively trains the machine to recognize something was not a hostile attack, and it is OK to ignore this type of event in the future.

Or the operator can confirm the machine’s action by allowing the block to continue. This effectively confirms to the machine an attack is underway and alerts it that it should respond accordingly to similar events in the future. Over time, the system becomes trained to intelligently determine whether or not the risk factors it is detecting indicate a hostile cyberattack.

It should be noted the treasure trove of real-time network monitoring data and analytics federal organizations have at their disposal can be an effective cybersecurity resource when used in conjunction with machine-learning tools. Instead of having predetermined analytics that always comes up with the same answers to the same questions, analytics can be adjusted and evolve over time to better respond to potential risks.

Machine learning can have a positive impact beyond enhanced security and decreased risk of hostile attacks because it can be used to create a more efficient and automated security apparatus that reduces operator workloads. The combination of machine learning with other automated network technologies, such as software-defined networking and cloud solutions, can allow operators to do more with less and free up time to pursue other mission-critical activities.

It also minimizes the risk of human error and lays the groundwork for faster development of more robust and complex systems that can effectively combat threats with minimal human intervention.

At some point, we must acknowledge without massive automation, there simply are not enough humans on Earth to manage IT infrastructures and security operations globally. Network technologies like SDN scale far too quickly, and security threats are too advanced, to leave the management of these solutions solely in the hands of human beings.

Therefore, we have no choice but to make network infrastructures more programmable, autonomous and secure. Machine learning checks off all of these boxes, all while making life much more manageable for network security operators.

NEXT STORY: HR and IT: A Partnership Poised to Protect Federal Cyber Systems

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.