IBM increases Watson cybersecurity experiences
7 December 2016 | 0
Watson has gone through school and ready for first internship. IBM has said its Watson cognitive computing system continues its path to become part of a full-fledged cybersecurity service by announcing 40 customers have begun beta testing the technology as an enterprise protection tool.
Watson has recruited enterprises from auto, banking and insurance realms — including Sun Life Financial, University of Rochester Medical Centre, SCANA Corporation, Sumitomo Mitsui Financial Group, California Polytechnic State University, University of New Brunswick, Avnet and Irish firm Smarttech – to help research and develop new security applications that will use the systems natural language and machine learning techniques.
The idea behind the Watson for Cybersecurity project is to automate IT security duties such as analysing the tons of alerts generated daily by security operations. The ultimate goal would be to help automate responses to security problems but that notion is down the road for Watson for now.
The help is needed too as the volume of security data presented to analysts is staggering, IBM said in a recent release. The average organisation sees over 200,000 pieces of security event data per day with enterprises spending $1.3 million (€1.21 million) a year dealing with false positives alone, wasting nearly 21,000 hours. Couple this with 75,000-plus known software vulnerabilities reported in the National Vulnerability Database, 10,000 security research papers published each year and over 60,000 security blogs published each month and security analysts are severely challenged to move with informed speed, IBM stated.
The beta customers are using Watson to bring more experience to the system and develop new use-cases such as: determining whether a current security “offense” is associated with a known malware or cybercrime campaign; if so, Watson provides background on the malware employed, vulnerabilities exploited and scope of the threat, among other insights, said Diana Kelley, executive security adviser to IBM Security. Watson can also improve identifying suspicious behaviour and help provide better guidance to whether an activity is malicious.
Watson’s internship began earlier this year when IBM announced a year-long research that has Watson working with eight universities on cybercrime issues. The project is feeding about 15,000 security documents into Watson every month, including threat intelligence reports, cybercrime strategies, threat databases and materials from Big Blue’s own X-Force research library. X-Force represents 20 years of security research, including details on 8 million spam and phishing attacks and more than 100,000 documented vulnerabilities.
Those universities include California State Polytechnic University at Pomona, Penn State, MIT, New York University and the University of Maryland at Baltimore County as well as Canada’s universities of New Brunswick, Ottawa and Waterloo.
Cork-based Smarttech has implemented Watson-supported services for customer and business process management services provider, Abtran.
“Abtran deal with massive amounts of data on a daily basis, and security is at the heart of everything we touch,” said Martin Leahy, CTO, Abtran. “Much of that data is unstructured: documents, social media content and other information that does not reside in conventional databases and it can’t be parsed by traditional algorithms or machine analysis. Using IBM Watson for Cybersecurity allows Abtran to stay ahead of the curve when securing this data and ensuring our customers and their data stay safe.”
“Cognitive intelligence brings meaning to data through human-like understanding of natural language queries. With the help of IBM Watson, Smarttech deliver managed security services to provide real-time analysis of an organisation’s entire network system and a deeper visibility across the entire IT infrastructure through our Security Operations Centre,” said Ronan Murphy, CEO, Smarttech.
IDG News Service and TechCentral Reporters