Realistic Synthetic Generation Allows Secure Development

Post on 28-Jul-2015

421 views 0 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

Transcript of Realistic Synthetic Generation Allows Secure Development

© 2014 MapR Technologies 1© 2014 MapR Technologies

Realistic Synthetic Data Allows Secure Development

Ted Dunning

June 11, 2015

© 2014 MapR Technologies 2

Who am I?

Ted Dunning, Chief Applications Architect MapR Technologies

Email tdunning@mapr.com tdunning@apache.org

Twitter @Ted_Dunning

mailto:tdunning@mapr.com
mailto:tdunning@apache.org

© 2014 MapR Technologies 3

Short Books by Ted Dunning & Ellen Friedman

• Published by O’Reilly in 2014 and 2015• For sale from Amazon or O’Reilly• Free e-books currently available courtesy of MapR

http://bit.ly/ebook-real-world-hadoop

http://bit.ly/mapr-tsdb-ebook

http://bit.ly/ebook-anomaly

http://bit.ly/recommendation-ebook

© 2014 MapR Technologies 4

© 2014 MapR Technologies 5

The basic idea

© 2014 MapR Technologies 6

Anomaly Detection and Fraud Analytics

• Financial customer wants to identify zero-day attacks

• And advanced persistent threats

• By sophisticated adversaries who don’t use known vectors

• Must keep logs and other data secret– But must also collaborate on detection algorithms

© 2014 MapR Technologies 7

Secure Development is Hard

© 2014 MapR Technologies 8

Secure Development is Hard

Outside collaborators are outside the security perimeter

They can’t see the data and they can’t tune new algorithms to fit reality

© 2014 MapR Technologies 9

How To Make Realistic Data

© 2014 MapR Technologies 10

Parametric Simulation

Parametric matching of failure signatures allows emulation of complex data properties

Matching on KPI’s and failure modes guarantees practical fidelity

© 2014 MapR Technologies 11

Do’s and Don’ts

• Do match the KPI’s and failure modes– Speed– Score distribution– False positive rates versus score

• Don’t try to match the actual data distribution precisely– Good enough is good enough and we want to imitate failures,

not create new life forms– Probably impossible to do precisely– Even if possible, it is vastly harder to match distributions

© 2014 MapR Technologies 12

Methods for Generating Numbers

• Well-known distributions– Uniform, normal, gamma, Poisson– Truncations

• Cumulations– Random walk v1

• Mixture distributions• Hyper-parameters

– Random walk v2

© 2014 MapR Technologies 13

Normal

data = data.frame(x=rnorm(10000), y=rnorm(10000))

© 2014 MapR Technologies 14

Mixture of Normals

© 2014 MapR Technologies 15

Random Walk

y = cumsum(rnorm(10000))

© 2014 MapR Technologies 16

Pick Mean from Multinomial

© 2014 MapR Technologies 17

Random Walk with Variable Standard Deviation

y = cumsum(rt(10000, df=0.9))

© 2014 MapR Technologies 18

Methods for Generating Symbols

• Symbols are really just integers with a dictionary• Well-known distributions

– Multinomial– Dirichlet processes– Rich-get-richer, Pittman-Yor

• Mixture distributions• Hyper-parameters• Lookup tables!!!

– Simple tables– Data table joins for correlated components

© 2014 MapR Technologies 19

Skewed Integers

207 3 203 0 198 7 196 4 195 12 193 10 189 2 187 1 185 13 179 6 178 9 177 5 177 25 174 21 173 8 173 14 170 18

[ {"name":"x", "class":"int", "skew":1}]

© 2014 MapR Technologies 20

Methods for Generating Behaviors

• Use structured data!– Generate user meta-data– Generate list of transactions

• Only flatten if necessary• See Apache Drill for post-processing

© 2014 MapR Technologies 21

Methods for Generating Databases

• Use integers (see previous) as foreign keys• Normalized form implies (approximate) independence of tables

© 2014 MapR Technologies 22

© 2014 MapR Technologies 23

Go get log-synth

https://github.com/tdunning/log-synth

© 2014 MapR Technologies 24

A worked example...

© 2014 MapR Technologies 25

Simulation Setup

© 2014 MapR Technologies 26

© 2014 MapR Technologies 27

© 2014 MapR Technologies 28

Questions?

© 2014 MapR Technologies 29

Thank You

@mapr maprtech

tdunning@mapr.comtdunning@apache.org

Ted Dunning, Chief Application Architect

MapRTechnologies

maprtech

mapr-technologies

mailto:tdunning@mapr.com

Top related

GENRE UNIT: REALISTIC FICTION - wtps.org UNIT: REALISTIC FICTION ... Realistic Fiction: Realistic fiction, ... c. Pose and response to specific questions by making comments that contribute
 Documents
Protostellar Disk Formationbraking enough to allow a rotationally supported disk (for a realistic magnetization). • Enhanced resistivity allows disk formation • Need about η=3×10.
 Documents
Synthetic seismograms, synthetic sonic logs, synthetic …€¦ ·  · 2014-04-09Synthetic seismograms, Synthetic sonic logs, ... Synthetic seismograms range from 1-D model seismograms
 Documents
Features Quick Peek - GitHub Pages · OSPRay’sPath Tracer Denoiser with Open Image Denoise OSPRay’sPath Tracer has been introduced recently in ParaView 5.6. It allows realistic
 Documents
Photo-Realistic Simulation of Road Scene for Data-Driven … · truth for tackling computer vision problems such as object detection and depth. The dataset is photo-realistic synthetic
 Documents
PREditOR: a synthetic biology approach to removing … · 2017. 8. 27. · synthetic biology approach that allows us to directly removeheterochromatinfromcells withouteitherdrugs
 Documents
REALISTIC MATHEMATICS EDUCATION (RME) PENDIDIKAN MATEMATIKA REALISTIK …staffnew.uny.ac.id/.../realistic-mathematics-education.pdf · 2017. 1. 23. · REALISTIC MATHEMATICS EDUCATION
 Documents
Realistic Fiction Examples of Realistic Fiction.
 Documents
Generating Realistic Synthetic Population Datasetspeople.cs.vt.edu/naren/papers/tkdd-synthetic-pop-18.pdf · underlying data generation distribution. However, modeling multi-dimensional
 Documents
Generalized structured additive regression based on ...insurance data, the approach allows realistic modelling of complex problems. We con- ... Generalized additive models (GAM) provide
 Documents
Engineering Realistic Synthetic Insider Threat (Cyber ... · Engineering Realistic Synthetic Insider Threat (Cyber -Social) Test Data . Kurt Wallnau . Senior Member of Technical Staff
 Documents
Basic types of sound Realistic sound – derived from actual sources (footsteps, voices, cars, etc.) Synthetic sound – invented and have no counterpart.
 Documents
Sensor-Realistic Synthetic Data Engine for Multi-Frame High …openaccess.thecvf.com/content_CVPRW_2020/papers/w31/Hu_Sens… · Multi-frame High Dynamic Range Photography Jinhan
 Documents
Safe, realistic, reliable DRÄGER FIRE · To provide you with a mobile fire training system that allows you to train wherever the trainees are, we have implemented realistic fire
 Documents
Focus on Defocus: Bridging the Synthetic to Real Domain Gap for …openaccess.thecvf.com/content_CVPR_2020/papers/Maximov_Focus… · main strategies: domain adaptation, photo-realistic
 Documents
SEISMIC ESTIMATION FOR SOFIA REGION WITH NEURAL … · seismic ground motion along three cross sections were carried out. Realistic synthetic strong motion waveforms have been computed
 Documents
inform - Grimme Landmaschinenfabrikstatic.grimme.com/files/2014/11/24/79ef38b24632b76ad9feafbdccffce... · realistic experience of a true working environment and also allows students
 Documents
Synthetic or Real? The Equilibrium E ects of Credit ...cepr.org/sites/default/files/events/papers/6708_OEHMKE - Synthetic... · of levered basis traders, which allows long-term investors
 Documents
ARTIFICIAL CRASS Realistic and stays green all year round ......from building up within the synthetic grass. Artificial grass Offers the natural looking and appealing, It's a perfect
 Documents
Realistic Fiction September Genre of the Month. Realistic Fiction Realistic Fiction stories are fiction stories that could be true, but aren’t. Realistic.
 Documents

Copyright © 2022 FDOCUMENTS