OXFORD, U.K. — 十一月 4, 2021 —

Sophos, a global leader in next-generation cybersecurity, today announced that SophosAI team members are presenting innovative security machine learning research at three industry events in November, including CAMLIS, the NVIDIA GTC conference and Black Hat Europe.

“At SophosAI, we believe progress in machine learning for information security is as much about transparency and clear communication as it is about experimentation and technology. In short, we progress, and better fulfill our moral mission to protect people, when we share results and ideas across the boundaries of institutions and enterprise. In support of this vision, we are presenting SophosAI’s work at six talks across three different conferences in November,” said Josh Saxe, chief scientist, Sophos. “These talks are all either invited sessions or peer-reviewed conference paper presentations, validating the soundness and merit of our team’s work. We hope that other teams benefit from our openness, address our weaknesses, and build on our strengths, so that we better advance the efficacy of artificial intelligence in defending cybersecurity.”

The SophosAI Session Line-up  

CAMLIS

Thursday, Nov. 4, 2021, at 4:05 pm to 4:55 pm ET

SOREL-20M: A Large Scale Benchmark Dataset for Malicious PE Detection

Richard Harang and Ethan Rudd, former data scientists at Sophos

Harang and Rudd will present work developed while they were research scientists at Sophos, describing Sophos and ReversingLabs’ SOREL-20M benchmark dataset. SOREL-20M is a milestone in the cybersecurity, because for the first time, it provides researchers with an industrial scale malware and benign ware research dataset for prototyping machine learning malware detection and classification technologies.

Friday, Nov. 5, 2021, at 2:20 pm to 2:40 pm ET

Bad Neighborhoods – Learning Malicious Infrastructure at Internet Scale

Tamas Voros and Konstantin Berlin, data scientists, Sophos, Joshua Saxe, chief scientist, Sophos, and Rich Harang, former data scientist, Sophos

Voros, with Saxe, Berlin and Harang, is presenting research on risk-mapping the IPv4 address space. Voros is showing how creative representations of IPv4 addresses and creative neural representations can help neural networks trained on malicious and benign IP addresses to assign risk to previously unseen IP addresses. He is also discussing how IPv4 risk assignment can significantly boost detection accuracy when incorporated into larger cyberattack detection pipelines.

Friday, Nov. 5, 2021, at 2:20 pm to 2:40 pm ET

Using Undocumented Hardware Performance Counters to Detect Spectre-Style Attacks 

Harini Kannan, data scientist, and Nick Gregory, research engineer, Sophos 

Kannan and Gregory’s talk explains how to use undocumented hardware performance counters to detect spectre-style attacks. Exploiting CPU-level bugs is a trend in the security world, and Kannan and Gregory will demonstrate how machine learning can produce generic, implementation independent detectors for these exploits.  

Friday, Nov. 5, 2021, at 3:55 pm to 4:40 pm ET

Improving Analyst Workflow Using Event Clustering

Awalin Sopan, principal software engineer, Sophos

Sopan is presenting her research and development work around data visualization supporting security machine learning operations. Her work powers SophosAI’s ability to monitor dozens of security machine learning models in the field.

More information on SophosAI’s four presentations is available at CAMLIS’ online schedule.

NVIDIA GTC

Wednesday, Nov. 10, 2021, at 9 am to 9:50 am ET

Operationalizing Cybersecurity Machine Learning Models at a Large Data Science-Focused Security Vendor (Sophos)

Joshua Saxe, chief scientist, Sophos

Saxe is a featured speaker alongside industry leaders Nir Zurk, chief technology officer, Palo Alto Networks, and Gera Dorfman, vice president of Network Security, Checkpoint Software Technologies. Saxe is showcasing how SophosAI operates a machine learning portfolio that defends tens of millions of devices from cyberattack. He is also discussing SophosAI’s research, development and operational practices and technologies.

Black Hat Europe

Thursday, Nov. 11, 2021, at 10:20 am to 11 am ET (virtual)

No More Secret Sauce! How we can Power Real Security Machine Learning Progress Through Open Algorithms and Benchmarks

Joshua Saxe, chief scientist, Sophos

In this talk, Saxe is making the case for open science in security machine learning, arguing that for too long security machine learning has lacked public benchmark datasets and open publishing practices. Saxe is proposing a set of steps that the artificial intelligence community needs to take to make progress against the hardest cybersecurity challenges.

For interviews with SophosAI’s experts or more information about the six talks, please contact: sophos@marchcomms.com.

关于 Sophos

Sophos 是全球领先的先进安全解决方案提供商和创新者,全面安全解决方案涵盖托管式侦测与响应 (MDR) 和事件响应服务,以及广泛的端点、网络、电子邮件和云安全技术。作为最大的纯网络安全厂商之一,Sophos 为全球超过 600,000 家企业和超过 1 亿用户提供防御主动攻击对手、勒索软件、网络钓鱼、恶意软件等威胁的保护。Sophos 的服务和产品通过 Sophos Central 管理控制台连接,并得到公司内部的跨领域威胁情报部门 Sophos X-Ops 的支持。Sophos X-Ops 情报优化整个 Sophos Adaptive Cybersecurity Ecosystem 自适应网络安全生态体系,包括一个中央数据湖,为客户、合作伙伴、开发人员和其他网络安全与信息技术供应商提供一组丰富的开放 API。Sophos为需要完全托管的安全解决方案的组织提供网络安全即服务。客户还可以直接利用 Sophos 的安全运行平台管理其网络安全,或者采用混合方法,为内部团队补充 Sophos 服务(包括威胁追踪与修复)。Sophos 通过世界各地的经销商合作伙伴和托管服务供应商 (MSP) 销售。Sophos 总部位于英国牛津。如欲了解更多信息,请访问 www.sophos.com