race against the machine - mcubed ai london...13 © hisolutions 2018 infosec in a nutshell confi-...
TRANSCRIPT
![Page 1: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/1.jpg)
1
Race Against the Machine
M³ London October 16th, 2018
Will AI Help Or Harm Security?
David Fuhr
![Page 2: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/2.jpg)
22 © HiSolutions 2018
• Maths
• Crypto(graphy)
• InfoSec
• Gestalt/Coaching
David FuhrHead of Research, HiSolutions AG
![Page 3: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/3.jpg)
33 © HiSolutions 2018
![Page 4: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/4.jpg)
4 © HiSolutions 2018
![Page 5: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/5.jpg)
55 © HiSolutions 2018
![Page 6: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/6.jpg)
66 © HiSolutions 2018
![Page 7: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/7.jpg)
77 © HiSolutions 2018
DATA SCIENTIST / AI RESEARCHER
![Page 8: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/8.jpg)
88 © HiSolutions 2018
![Page 9: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/9.jpg)
99 © HiSolutions 2018blogs.balbix.com
![Page 10: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/10.jpg)
1010 © HiSolutions 2018blogs.balbix.com
![Page 11: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/11.jpg)
1111 © HiSolutions 2018
www.datasciencecentral.com
![Page 12: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/12.jpg)
12 © HiSolutions 2018
Man vs. Machine
…threatens Human Machine
HumanCivil/Military
SecurityInfoSec ……
Cyberwar
Machine Safety War of Machines
[Liggesmeyer 2015]
![Page 13: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/13.jpg)
13 © HiSolutions 2018
InfoSec in a Nutshell Confi-dentia
-lity
Inte-grity
InfoSec
Avai-lability
Goal (Why): Protect CIA triad
How?
(Risk) Management System
(PDCA Cycle, saturation curve, dynamics)
Looong list of controls (preventive, detective, corrective)
Lots of folklore,
drinking,
bragging, and
crystal balling
![Page 14: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/14.jpg)
14 © HiSolutions 2018
AI Security?
AI for Security
Security of/for AI
Security from/against AI
Security because of / thanks to AI
AI against Security / Security in spite of AI
…?
![Page 15: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/15.jpg)
15 © HiSolutions 2018
Man vs. AI vs. Machine
…threatens Human AI Machine
Human Civil/Military Security AI-Sec InfoSec
AI AI Safety Adversarial Sec AI
Machine Safety (e.g. Safety AI) (AI-Sec) War of Machines
![Page 16: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/16.jpg)
16 © HiSolutions 2018
Adversarial: AI vs. AI
Sparring: GANs (Generative Adversarial Networks, 2014)
Fight: CGC (DARPA Cyber Grand Challenge 2016)
![Page 17: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/17.jpg)
17 © HiSolutions 2018
AI-Sec: Humans vs. AI
Humans (or nature) trying to harm a piece of software
(on purpose or bad luck (e.g., fat finger))
This we know!
See InfoSec
![Page 18: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/18.jpg)
18 © HiSolutions 2018
AI-Sec: Humans vs. AI
Availability: Depending on (Cloud) resources, model parameters, data
Confidentiality: Trade secrets in models
Integrity:
Manipulation of evaluation
Manipulation of models
Manipulation of data
Manipulation of AI stacks (source code, binaries)
Manipulation of supply chain
Let “us” tell you: It’s all going to happen.
![Page 19: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/19.jpg)
19 © HiSolutions 2018
Sec-AI: AI vs. Machines
Offensive AI
Defensive AI
https://xkcd.com/
![Page 20: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/20.jpg)
20 © HiSolutions 2018
Incorrect View of InfoSec (Dullien 2017)
Thomas Dullien 2017, https://doc.dustri.org/keynotes/Machine%20Learning,%20Offense,%20and%20the%20future%20of%20Automation%20-%20Halvar%20Flake%20-%20ZeroNights%202017.pdf
![Page 21: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/21.jpg)
21 © HiSolutions 2018
More Realistic View of InfoSec (Dullien 2017)
Thomas Dullien 2017, https://doc.dustri.org/keynotes/Machine%20Learning,%20Offense,%20and%20the%20future%20of%20Automation%20-%20Halvar%20Flake%20-%20ZeroNights%202017.pdf
![Page 22: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/22.jpg)
22 © HiSolutions 2018
The Good, the Bad & the Ugly
Task Today Future Action
SPAM detection Near perfect SPAM evasion might win Learn about useful/fruitful content
Virus detection Mostly non-AI Not to change that fast (what is
„evil“ behavior?)
Wrong idea anyways ;-)
Whitelisting, hardening,
true software engineering
„Anomaly
detection“
AI marketing hype Will work in simple/strict
environments
Ditto
Vuln scanning Some AI hype Mostly useless (hacking is
about exploiting minor glitches)
Can work on a macro level
Attribution „It was the
Russinese!“
Please don‘t. Forget about it!
Config
Management
Non-AI Promising („most servers that
were not hacked did X“)
Start doing Config management
Use AI to make it cooler
Other What is AI? Lots of hidden wins Start researching
![Page 23: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/23.jpg)
23 © HiSolutions 2018
AI Safety: AI vs. Humans
- Opacity (vs. Transparency)
- Bias
- Singularity
![Page 24: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/24.jpg)
24 © HiSolutions 2018
AI Safety: AI vs. Humans
- Opacity (vs. Transparency)
- Transparency as crucial for democracy: Trust, Accountability
- Also a chance?
- Bias
- Cannot be avoided (part of culture), but:
- We need to stay fluid vs. power
- Stakeholder problem (bias in professional field)
- Always ask and invite those discriminated against
- Singularity
- Actually a scale
- Start researching and mitigating early(!!!)
![Page 25: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/25.jpg)
25 © HiSolutions 2018
Who Will Win?
Attacker or Defender?
In (pre AI) InfoSec:
It depends.
Used to say: attacker
New insight:
locally: attacker
globally: defender
but: cyberwar
https://xkcd.com/
![Page 26: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/26.jpg)
26 © HiSolutions 2018
Who Will Win with AI / Post-AI?
Defenders need to keep wining (statistically, without black swans)
New type of defenders and defenses needed
More research necessary
https://xkcd.com/
![Page 27: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/27.jpg)
27 © HiSolutions 2018
Man vs. AI vs. Machine
…threatens Human AI Machine
Human Civil/Military SecurityAI-Sec
- New Attack VectorsInfoSec
AI
AI Safety
- Opacity
- Bias
- Singularity
Adversarial:
- GANs
- CGC
Sec AI
- Offensive AI
- Defensive AI
MachineSafety
(e.g. Safety AI)(AI-Sec) War of Machines
![Page 28: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/28.jpg)
28 © HiSolutions 2018
Lessons To Be (Deeply) Learned
We (AI & InfoSec communities) need to talk.
Now.
Learn about
Threat Modeling
Attacks/Attack vectors
Risk Analysis and Risk Management
Security by Design, Security by Default
Accountability
Transparency
And have fun doing it!
![Page 29: Race Against the Machine - Mcubed AI London...13 © HiSolutions 2018 InfoSec in a Nutshell Confi- dentia-lity Inte-grity Info Sec Avai-lability Goal (Why): Protect CIA triad How? (Risk)](https://reader034.vdocument.in/reader034/viewer/2022042323/5f0e06637e708231d43d3f10/html5/thumbnails/29.jpg)
2929 © HiSolutions 2018
Bouchéstraße 12 | 12435 Berlin
[email protected] | +49 30 533 289 0
www.hisolutions.com
Thanks! Questions?
David [email protected]