Come and join us to our May sessions!

Agenda:
17:30 - 18:00 - Mingling, Food and Beer
18:00 - 18:40 - Identity Resolution in Cyber Security - Shlomo Yona
18:45 - 19:30 - Data Driven Threat Analytics - Johnathan Azaria, Nadav Avital and Ori Nakar

Identity Resolution in Cyber Security

Resolving actor's identity is imperative in many online systems. Misunderstanding of your actors' identity means that you may be confusing bots with people, mistakenly resolving an individual actor as several different other actors, mislead by multiple identities which are actually the same actor and many more. These misunderstandings may well be wreaking havoc in your analytics be it by wrong visualization or by introducing noise to your statistical models. We will learn a strategy to try and mitigate this problem and how this strategy fits into a broader security system.

Shlomo Yona, Founder and Chief Scientist @Mathematic.ai

Data Driven Threat Analytics

We will start with a short description about our Threat Analytics Data Lake, and later describe 3 threat detection methods used by our research group:

1. Botnet detection - Botnets have been around for over two decades, and with the rise of the Internet of Things (IoT) they’ve spread further than anyone imagined they would. While some botnets mine cryptocurrency and steal passwords, others are used in massive wide-scale attacks against websites. Despite being around for a while, botnets are still a tricky thing to detect and mitigate, especially from a web server’s point of view. However, even the simplest weblog entries can supply valuable insight.
   In this talk I’ll describe the pitfalls, and provide some solutions, to botnet detection.

Johnathan Azaria, Threat Research Data Scientist @ Imperva

2. Threat Detection Methods - In big data it is easy to get lost. How can you remove noises, and find out the data you are interested in? Is there a way to automate such process?
   I'll describe methods we use, and automated processes we have to detect threats in our Threat Analytics Data Lake.

Ori Nakar, Threat Research Technical Leader @ Imperva

3. The “unknown unknown” is a difficult problem in the cyber security world. How do you protect against something you don’t know that needs protection? In this talk I will describe our attempts to leverage data that is continuously collected from millions of clients to get a glimpse into the “unknown” and perhaps tip the scales in our favor.

Nadav Avital, Threat Research Manager @ Imperva