Using Deep Reinforcement Learning to Simulate Security Analyst

reportActive / Technical Report | Accesssion Number: AD1175136 | Open PDF

Abstract:

The goal of this project was to overcome conventional limitations of deep learning approaches and advance the use of machine learning approaches to understand, identify, and analyze security incidents. In general, main-stream classifiers require a full description of the sample (in our scenario this means all possible information about the security incident) and perform the classification in one step, which is in a sharp contrast to the modus operandi of the analyst, whose investigation is composed of a sequence of actions and decisions.

Author(s):
Pevny, Tomas
Author Organization(s):
CZECH TECHNICAL UNIVERSITY IN PRAGUE
Funding Organization(s):
EUROPEAN OFFICE OF AEROSPACE RESEARCH AND DEVELOPMENT RUISLIP (UNITED KINGDOM), RUISLIP
Document Type:
Technical Report/Final Report
Publication Date:
2022 Jun 03
Pagination:
4

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution Code:
A - Approved For Public Release
Distribution Statement: Public Release

RECORD

Collection: TRECMS
Identifying Numbers
Report Number(s):
AFRL-AFOSR-UK-TR-2022-0059
Grant Number(s):
FA9550-18-1-7008
Program Element Number(s):
PE61102F
Subject Terms
Modernization Areas:
Autonomy
Communities of Interest:
Autonomy
Descriptor(s):
machine learning, artificial intelligence, reinforcement learning, neural networks, deep learning, artificial intelligence software, classification, learning, security, universities, scientific research, artificial intelligence computing
Keyword(s):
security incidents, security analyst simulation, classical heuristic solutions, hmil (Hierarchical Multiple Instance Learning), hmil framework
Subject Categories:
Mathematical and Computer Sciences; Mathematical and Computer Sciences
Creation Date:
2022 Jul 27
Update Date:
2022 Sep 20