Akamai
Data Science: Core of Threat Intelligence

Data Science is a field within Big Data which uses algorithms that incorporate statistical techniques and other computation to interpret data and uncover meaningful patterns. In the security world Data Science means using algorithms to reveal malicious activity in near real time by processing massive volumes of data gathered from networks and other sources.

Contemporary internet threats are sophisticated and adaptable, they continuously change their complexion to evade security defenses. At the same time, security researchers are discovering some sources of security data are (or will soon be) either unavailable, or more opaque due to encryption and the need to ensure personally identifiable information (PII) is always properly protected. There’s also considerable evidence the proliferation of new connected devices introduces additional unknown exposure. Uncovering and deterring malicious activity is getting harder and new approaches are needed to stay ahead of the threat curve. This paper will:

● Briefly cover security research challenges in today’s threat landscape
● Explain why DNS resolution data is a rich resource for security research
● Describe how Akamai teams use DNS data and data science to create better threat intelligence
● Discuss improvements in threat coverage, accuracy, and responsiveness to today’s agile threats

Posted Date: August 14, 2019
View More