Advanced Breach and Attack Simulation using ML
Overview
Cybersecurity is becoming a need more than ever. Organizations need to protect their digital assets and are required to earn certifications to prove the compliance to the regulations and rules. For this, these assets must be assessed to ensure the target security posture and to get certified or pass an audit on yearly basis. This is a daunting and costly task as it often requires a third-party tester that tries to penetrate the system, under agreement. Breach and Attack Simulation is a new method that allows to do this penetration testing in-house, using some automation tools. Some of these tools can be using scripts of known attack vectors, and running them in sequence. This, however, does not cover unknown zero-day attacks. An intelligent way would be to try to account for potential attack that are unknown. We envision that using some Machine Learning techniques trained on some types of vulnerabilities can make this automation smarter.
Expected deliverables
The goal of this project is to experiment the use of Deep Learning or Generative Adversarial Networks as a tool to optimize the Breach and Attack Simulation. The intern will make use off-the-shelf tools that follow the same method for the detection of critical faults, e.g., memory overflows, and extend it for more security vulnerabilities (e.g., network). The objectives of the project are to understand the feasibility of ML model in optimizing BAS tools and publish the results as a paper or commercialize the project.
Questions and Answers
Where to find answers to Frequently Asked Questions about applying to VSRP?
Contacts
Supervisors
Biography
Paulo Esteves-Veríssimo is a professor in the Computer Science (CS) program at KAUST. Previously, he was a professor and FNR PEARL Chair at the University of Luxembourg's (Uni.lu) Faculty of Science, Technology and Medicine (FSTM). He also led the CritiX Research Lab at the SnT Centre at Uni.lu, which achieved world-class results and established enduring research capacity in resilient computing, cybersecurity, and dependability.
He has also been a professor and a board member of the University of Lisbon (ULisboa), Portugal. At ULisboa, he created the Navigators research group and was the founding director of Laboratório de Sistemas Informáticos de Grande Escala (LaSIGE). From its founding in 1998, the computer science and engineering lab LaSIGE has carried out research in leading-edge areas backed by key indicators of excellence.
He was UNILU-SnT’s representative at the European Cyber Security Organization (ESCO) and member of its Scientific & Technical Committee (STC). He served as Chair of the IFIP WG 10.4 on Dependable Computing and Fault-Tolerance and vice-chair of the Steering Committee of the IEEE/IFIP DSN conference. He is a Fellow of the IEEE, a Fellow of the ACM and an associate editor of IEEE Transactions on Emerging Topics in Computing (TETC).
Research Interests
Professor Esteves-Veríssimo is interested in architectures, middleware and algorithms for resilient modular and distributed computing. In addition to examining paradigms and techniques that reconcile security and dependability, he also explores novel applications of these paradigms and techniques. By doing so, he achieves system resilience in areas such as autonomous vehicles, distributed control systems, digital health and genomics, and blockchain and cryptocurrency.
Dr. Esteves-Veríssimo’s research has featured in over 200 peer-reviewed international publications and five international books. He has delivered over 70 keynote speeches and distinguished lectures at reputable venues. As a systems and engineering specialist, he has contributed to designing and engineering several advanced industrial prototypes of distributed, fault-tolerant, secure or real-time systems developed through research and development.