Machine Learning In Security: Good & Bad News About Signatures

Why security teams that rely solely on signature-based detection are overwhelmed by a high number of alerts. First in a series of two articles about the history of signature-based detections, and how the methodology has evolved to identify different types of cybersecurity threats. Used in the context of an outdated and manually intensive technology focused on older classes of threats, there’s little wonder why vendors would seek to distance the legacy term “signature” from their advanced detection technology. Vendors haven’t necessarily been deceptive in the labeling of their latest generation of techniques; it’s often just easier to create a new label for something than to fully explain the context and evolution of what preceded it. Over the years, signature-based systems have changed and advanced, but the core concepts still lie…


Link to Full Article: Machine Learning In Security: Good & Bad News About Signatures