123ArticleOnline Logo
Welcome to 123ArticleOnline.com!

ALL » Computers >> View Article

How Chicken Eyes Taught Us To Detect Cloud Security Breaches

By Expert Author: AdamChriss

A fascinating scientific discovery

There was a fascinating discovery last month on a new state of matter never before seen in biology in, of all places, the eyes of chicken – a state of “disordered hyperuniformity”. This arrangement of particles in the chicken’s eyes appears disorganized over small distances but has a hidden order that allows material to behave like both a crystal and a liquid. Eyes of other animals have cones arranged in a discernable pattern; insects for example, have cones in a hexagonal scheme.

The fundamental characteristic of this state of matter is that they exhibit order over long distances but disorder over short distances.

This is what disordered hyperuniformity looks like

Take a look at the diagram below. This diagram depicts the spatial distribution of the five types of light-sensitive cells known as cones in the chicken retina (Image courtesy of Joseph Corbo and Timothy Lau, Washington University in St. Louis). Each type of cone is has an “exclusion region” that excludes other similar cones, and due to different sizes of cones these exclusion regions seem random but, in reality, cones have a hyper-uniform structure. For example, cones of a particular type arrange in a triangular formation with each other due to their exclusion regions.

Reading this, inspired me to draw a parallel to the analytics work we do at Skyhigh Networks in the field of Cloud Security where we analyze enterprise access events to discern patterns that indicate insider threats and security breaches by determining what normal access patterns look like and weeding those out. Finally….I think we have a single term to describe what we are looking for in terabytes of daily cloud access data we analyze – we are looking for deviations from “disordered hyperuniformity”.

Dare I say, security is in the [chicken] eyes of the beholder!

There is no dearth of headlines on enterprise data breaches, usually via advanced persistent threats that exfiltrate data over extended periods of time – including at technology companies like Adobe, and more recently at many retailers including Target and Neiman Marcus. In all these cases signals of anomalous activity existed but was lost in a sea of otherwise harmless access log data. Security analysts in enterprises are faced with a problem that big data has compounded even further – that of a deluge of data. The signals of nefarious activities are invariably lost in the tera- and peta- bytes of daily logs that are routinely collected.

Check out disordered hyperuniformaity applied to cloud analytics

Security analysts tasked with weeding out good actors (the majority of who fall into this pattern of disordered hyperuniformity) from the bad actors look for anomalies using behavioral and statistical anomaly detection techniques. For example, the below snapshots of a few minutes of access patterns (each dot representing a user access to a high/medium/low risk service) from a large enterprise repeats itself over very large time scales.. Techniques including both behavioral and statistical approaches are used to analyze this time series data for strong correlations indicating expected behavioral patterns.

These techniques are meant to efficiently bubble-up actors whose traffic patterns deviate from the norm. Codifying what is the “norm” is challenging due to variations in real time access patterns that invariably appear disordered. Hence, a macro-view that, for example, looks at logical Service chaining, category & risk of Services, user groups, etc. lends itself to more natural clustering of access patterns that make it easier to discern behavioral outliers. Using these techniques we at Skyhigh have found data exfiltration attempts using twitter, scans of cloud storage services for use as drop zones, command & control interactions from popular Infrastructure-as-a-Service providers, watering hole attacks from tracking services, and backdoor attacks from code hosting Services, to name a few.

Author :

Adam Chriss, a proud contributing author and a freelance writer with interests in various subjects and writes articles on several subjects including Cloud Technology, Cloud Security, Cloud Data Security, Data Loss Prevention Software etc,.

Total Views : 118Word Count Appx. : 656See All articles From Author

Computers Articles

1. How To Set Up Quickbooks As A Nonprofit
Author: anniejackson

2. Easy Ways To Do Laptop Data Recovery In Perth
Author: Vikram Kumar

3. Mobile Phone Data Recovery – The Most Outstanding Lost Data Retriever
Author: Vikram Kumar

4. All About Flash Drive Data Recovery And Laptop Data Recovery Services In Perth
Author: Vikram Kumar

5. Hard Drive Data Recovery – The Most Effective Service In Sydney
Author: Vikram Kumar

6. Data Recovery – The Most Advanced And Trustworthy Support
Author: Vikram Kumar

7. 3 Common Mistakes That Can Damage Your Tablet Within A Year
Author: Alex Stylis

8. Most Common Windows 8 Issues And Possible Fixes.
Author: Alex Stylis

9. Most Common Windows 8 Issues And Possible Fixes
Author: Alex Stylis

10. Get Sage Cloud Accounting Software To Automate The Enterprise And Commerce
Author: Salina Smith

11. Benefits Of Using Sap For Your Business
Author: SAP Guru

12. Custom Business Software – Demands Of Mobile-based Solutions
Author: Kennedy Ruiz

13. Website Design And Development Company Web Development Company India
Author: programmersdesk

14. Sage 50 Cloud Accounting For Managing The Businesses Online And On Premise
Author: Salina Smith

15. Configure Yahoo Mail With Outlook
Author: Kathlen David

Login To Account
Login Email:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: