<div dir="ltr">Fraud and intrusion detection are quite different spaces from a technical perspective. Machine leaning applies well to general fraud detection -- it does not to general intrusion detection. Happy to elaborate on why, but that is for another thread. Environments that have experience in both domains approach them separately. Everybody else is in a world of hurt on both fronts.<div><br></div><div>Dom</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Mar 31, 2015 at 6:30 AM, John Strand <span dir="ltr"><<a href="mailto:john@blackhillsinfosec.com" target="_blank">john@blackhillsinfosec.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Funny.<div><br></div><div>No mention of compliance.</div><div><br></div><div>It hit me about a week ago, fewer and fewer people are talking compliance.</div><div><br></div><div>Fraud and Spook, are coming up a lot more.</div><div><br></div><div>Are we growing - If just a little?</div><span class="HOEnZb"><font color="#888888"><div><br></div><div>John</div></font></span></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Mar 30, 2015 at 5:24 PM, Anton Chuvakin <span dir="ltr"><<a href="mailto:anton@chuvakin.org" target="_blank">anton@chuvakin.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">So far, I've shoved this most excellent post in quite a few faces .... and will shove in more :-)<div><br></div><div>I often wonder whether those same people who equate infosec/"cyber" with fraud (and there are plenty, sadly - not on *this* enlightened list of course :-)) and thus want to "solve cyber", also want to "solve theft", "solve murder", "solve greed", etc, etc, etc.</div><div><br></div><div>Ah, here goes one more: "... we don't need security, we don't handle credit card numbers here" ....</div><div><br></div><div><div class="gmail_extra"><br><div class="gmail_quote"><div><div>On Sat, Mar 28, 2015 at 6:10 AM, Dave Aitel <span dir="ltr"><<a href="mailto:dave@immunityinc.com" target="_blank">dave@immunityinc.com</a>></span> wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div>So much of security is driven by "fraud" and coming from a spook<br>
background as many people on this list do, I find it annoying.<br>
RSA-the-conference-and-meme is one of those markets that just baffles a<br>
lot of people who come from the government space. How is any of that<br>
stuff possibly worth so much money?<br>
<br>
"Fraud" is partially the answer I think. Things that come from the fraud<br>
world are as alien to spook-world as a giant ant-eater is to North<br>
America. At some level defeating Fraud is about hygiene, more than<br>
security. It's about valuing information in fungible units defined by<br>
"Credit Cards" or "Users" and not by "importance".<br>
<br>
But climates can change and we are at the cusp of that change. If you<br>
look at how Google Wallet or ApplePay work, they have the major<br>
advantage in that they already know what you want to buy before you buy<br>
it, and they know where you are at all times, so fraud is going to get<br>
exponentially more difficult. It may, in fact, become impossible.<br>
Imagine if consumer Fraud went extinct? Is this harder to imagine than a<br>
world without woolly mammoths?<br>
<br>
Companies have learned this year from Sony Pictures that protecting<br>
yourself against nation-states is the difference between surviving and<br>
not surviving, and that doing so requires a completely different<br>
corporate design than they're used to. FraudWorld has been invaded by<br>
SpookWorld.<br>
<br>
Good times! :) Of course, I can't end without saying that if you want to<br>
see what the climate is going to look like, what the swamp creatures<br>
about to invade tend to eat, then you have to come down to the<br>
Everglades and see us at INFILTRATE.<br>
<span><font color="#888888"><br>
-dave<br>
<br>
<br>
</font></span><br></div></div>_______________________________________________<br>
Dailydave mailing list<br>
<a href="mailto:Dailydave@lists.immunityinc.com" target="_blank">Dailydave@lists.immunityinc.com</a><br>
<a href="https://lists.immunityinc.com/mailman/listinfo/dailydave" target="_blank">https://lists.immunityinc.com/mailman/listinfo/dailydave</a><br>
<br></blockquote></div><span><font color="#888888"><br><br clear="all"><div><br></div>-- <br><div><div dir="ltr"><div>Dr. Anton Chuvakin<br>Site: <a href="http://www.chuvakin.org" target="_blank">http://www.chuvakin.org</a><br>Twitter: <a href="https://twitter.com/anton_chuvakin" target="_blank">@anton_chuvakin</a><br>Work: <a href="http://www.linkedin.com/in/chuvakin" target="_blank">http://www.linkedin.com/in/chuvakin</a></div></div></div>
</font></span></div></div></div>
<br>_______________________________________________<br>
Dailydave mailing list<br>
<a href="mailto:Dailydave@lists.immunityinc.com" target="_blank">Dailydave@lists.immunityinc.com</a><br>
<a href="https://lists.immunityinc.com/mailman/listinfo/dailydave" target="_blank">https://lists.immunityinc.com/mailman/listinfo/dailydave</a><br>
<br></blockquote></div><br></div>
</div></div><br>_______________________________________________<br>
Dailydave mailing list<br>
<a href="mailto:Dailydave@lists.immunityinc.com">Dailydave@lists.immunityinc.com</a><br>
<a href="https://lists.immunityinc.com/mailman/listinfo/dailydave" target="_blank">https://lists.immunityinc.com/mailman/listinfo/dailydave</a><br>
<br></blockquote></div><br></div>