Abstract:
Rules-based approaches to cyber security detection do not scale and are burdened by a reliance on human engineering. In this session, we explore machine learning approaches to cyber security threats, specifically those related to failed login attempts (often a left-of-compromise indicator of an attack) and credential misuse (abnormal behavior). Rather than apply rules, we use the data processing and analytic capabilities of the GPU Open Analytics Initiative (GOAI) to accelerate model training, inference, and other steps necessary to provide actionable alerts to an analyst in near real-time.