1 CPE Zoom Meeting - Attacking and Defending AI

When: 12-1pm on Thursday 8/20/2020

Meeting Location: Zoom virtual meeting

Speaker: Nathan Hamiel - Head of Cybersecurity Research, Kudelski Security

Nathan Hamiel is Head of Cybersecurity Research at Kudelski Security, an international security company providing innovative and tailored solutions to enterprises and public-sector clients. He works in the Applied Security group defining the future of products and services for the company. A security veteran with a strong focus on software security, he has spent his nearly 20-year career helping customers worldwide solve complex security challenges. Nathan and his team focus heavily on the areas of product security, communication security, and privacy. 

Nathan spends his time researching emerging and disruptive technologies and their intersection with information security. This research includes new approaches to difficult security problems and the safety, security, and privacy of artificial intelligence. He is a proponent of agility and simplification and their application in solving security challenges. Nathan is a regular public speaker and has presented his research at global security events, including Black Hat, DEF CON, HOPE, ShmooCon, SecTor, ToorCon, and many others. He is also a veteran member of the Black Hat review board, where he serves as the track lead for the AI, ML, and Data Science track.

Presentation: Attacking and Defending AI

You can't go anywhere these days without being bombarded with the initials A.I. The marketing hype is high, and so are the promises. Industry reports, TV commercials, and countless other sources tell you if your company isn't using AI, you will lose out. The truth is, not everything is a good use case for AI, but we are getting it anyway. These systems hide invisible complexity that increase technical debt, and this scenario isn't some far off problem for the future. Today, we have autonomous systems churning away, making critical decisions that we have no choice but to trust. A scary situation since these systems are fragile and fail in unexpected ways. Great for attackers, bad for security. 

Many organizations are developing or purchasing solutions that use machine learning, deep learning, NLP, or similar discipline. It's also a safe bet that security isn't a consideration in their development. After all, software development and model development are different, and after some time, you might not be getting what you paid for. It's essential for security professionals to have a baseline understanding of these concepts so they can adequately defend them. In this presentation, we'll look at this new attack surface and provide an introduction to these concepts for security professionals. With the right amount of knowledge and preparation, we can lower the attack surface.*SLIDES PRESENTED*