Machine Learning for Computer Security

The lecture is about combining the fields of machine learning and computer security in practice. Many tasks in the computer security landscape are based on manual labor, such as searching for vulnerabilities or analyzing malware. Here, machine learning can be used to establish a higher degree of automation, providing more "intelligent" security solutions. However, also systems based on machine learning can be attacked and need to be secured. The module introduces students to theoretic and practical aspects of machine learning in computer security. We cover basics on features, feature engineering, and feature spaces in the security domain, discuss the application of clustering and anomaly detection for malware analysis and intrusion detection, as well as, the discovery of vulnerabilities using machine learning. Additionally, we discuss the interpretability and robustness of learning-based systems.