Hands-On Artificial Intelligence for Cybersecurity

By : Parisi

4.4 (5)

Buy this Book

Hands-On Artificial Intelligence for Cybersecurity

4.4 (5)

By: Parisi

Buy this Book

Overview of this book

Today's organizations spend billions of dollars globally on cybersecurity. Artificial intelligence has emerged as a great solution for building smarter and safer security systems that allow you to predict and detect suspicious network activity, such as phishing or unauthorized intrusions. This cybersecurity book presents and demonstrates popular and successful AI approaches and models that you can adapt to detect potential attacks and protect your corporate systems. You'll learn about the role of machine learning and neural networks, as well as deep learning in cybersecurity, and you'll also learn how you can infuse AI capabilities into building smart defensive mechanisms. As you advance, you'll be able to apply these strategies across a variety of applications, including spam filters, network intrusion detection, botnet detection, and secure authentication. By the end of this book, you'll be ready to develop intelligent systems that can detect unusual and suspicious patterns and attacks, thereby developing strong network security defenses using AI.

Preface

Who this book is for

What this book covers

To get the most out of this book

Get in touch

Free Chapter

Section 1: AI Core Concepts and Tools of the Trade

Introduction to AI for Cybersecurity Professionals

Applying AI in cybersecurity

Evolution in AI: from expert systems to data mining

Types of machine learning

Algorithm training and optimization

Getting to know Python's libraries

AI in the context of cybersecurity

Summary

Setting Up Your AI for Cybersecurity Arsenal

Getting to know Python for AI and cybersecurity

Python libraries for cybersecurity

Enter Anaconda – the data scientist's environment of choice

Playing with Jupyter Notebooks

Installing DL libraries

Summary

Section 2: Detecting Cybersecurity Threats with AI

Ham or Spam? Detecting Email Cybersecurity Threats with AI

Detecting spam with Perceptrons

Spam detection with SVMs

Phishing detection with logistic regression and decision trees

Spam detection with Naive Bayes

NLP to the rescue

Summary

Malware Threat Detection

Malware analysis at a glance

Telling different malware families apart

Decision tree malware detectors

Detecting metamorphic malware with HMMs

Advanced malware detection with deep learning

Summary

Network Anomaly Detection with AI

Network anomaly detection techniques

How to classify network attacks

Detecting botnet topology

Different ML algorithms for botnet detection

Summary

Section 3: Protecting Sensitive Information and Assets

Securing User Authentication

Authentication abuse prevention

Account reputation scoring

User authentication with keystroke recognition

Biometric authentication with facial recognition

Summary

Fraud Prevention with Cloud AI Solutions

Introducing fraud detection algorithms

Predictive analytics for credit card fraud detection

Getting to know IBM Watson Cloud solutions

Importing sample data and running Jupyter Notebook in the cloud

Evaluating the quality of our predictions

Summary

GANs - Attacks and Defenses

GANs in a nutshell

GAN Python tools and libraries

Network attack via model substitution

IDS evasion via GAN

Facial recognition attacks with GAN

Summary

Section 4: Evaluating and Testing Your AI Arsenal

Evaluating Algorithms

Best practices of feature engineering

Evaluating a detector's performance with ROC

How to split data into training and test sets

Using cross validation for algorithms

Summary

Assessing your AI Arsenal

Evading ML detectors

Challenging ML anomaly detection

Testing for data and model quality

Ensuring security and reliability

Summary

Other Books You May Enjoy

Leave a review - let other readers know what you think

Customer Reviews

4.4 (5)

5 star

80%

4 star

3 star

2 star

20%

1 star

Network attack via model substitution

An interesting demonstration of the potential offered by adversarial attacks conducted in black-box mode is the one described in the paper Practical Black-Box Attacks against Machine Learning (arXiv: 1602.02697v4), in which the possibility of carrying out an attack against remotely hosted DNNs is demonstrated, without the attacker being aware of the configuration characteristics of the target NN.

In these cases, the only information available to the attacker is that of the output returned by the neural network based on the type of input provided by the attacker. In practice, the attacker observes the classification labels returned by the DNN in relation to the attacking inputs. And it is here that an attack strategy becomes interesting. A local substitute model is, in fact, trained in place of the remotely hosted NN, using inputs synthetically...