One of the most important assets to be protected is information, as every aspect of the life of a society deeply depends on the available information. Nowadays, information is stored, processed, and communicated by computers. It turns out that computers represent the most critical tool in modern society. A number of protection mechanisms are available so far, such as antivirus software tools, and biometric access control systems. For their effectiveness, frequent updates are needed, due to the rapid evolution of attack patterns. In fact, attacks are often devised and spread by running computer programs, which can produce new effective attacks in a short time frame. It turns out that machine learning techniques with their generalization capability are one of the favorite approaches to deploy protection and attack detection mechanisms. In this paper, we discuss the approaches that should be followed when devising machine learning techniques for security applications. In particular, we will focus on testing methodologies, performance measures, and techniques aimed at reducing the intrinsic variability of performance that often machine learning application exhibit in real-world scenarios.

Machine Learning in Security Applications

ARIU, DAVIDE;CORONA, IGINO;TRONCI, ROBERTO;GIACINTO, GIORGIO
2015-01-01

Abstract

One of the most important assets to be protected is information, as every aspect of the life of a society deeply depends on the available information. Nowadays, information is stored, processed, and communicated by computers. It turns out that computers represent the most critical tool in modern society. A number of protection mechanisms are available so far, such as antivirus software tools, and biometric access control systems. For their effectiveness, frequent updates are needed, due to the rapid evolution of attack patterns. In fact, attacks are often devised and spread by running computer programs, which can produce new effective attacks in a short time frame. It turns out that machine learning techniques with their generalization capability are one of the favorite approaches to deploy protection and attack detection mechanisms. In this paper, we discuss the approaches that should be followed when devising machine learning techniques for security applications. In particular, we will focus on testing methodologies, performance measures, and techniques aimed at reducing the intrinsic variability of performance that often machine learning application exhibit in real-world scenarios.
2015
Machine Learning, Computer Security, Security Tests, Security by Design
File in questo prodotto:
File Dimensione Formato  
8_1_3_39_mldm.pdf

Solo gestori archivio

Tipologia: versione editoriale
Dimensione 882.76 kB
Formato Adobe PDF
882.76 kB Adobe PDF   Visualizza/Apri   Richiedi una copia

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11584/122251
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
social impact