The reports in Azure AD Premium (or Microsoft’s Enterprise Mobility Suite) let you know when the machine learning system has detected that your credentials are being exposed. “Very soon we’ll be offering that in a policy-based way,” Weinert says, “so you can ask the system to act on your behalf rather than you having to catch the report in time. Leaked credentials, password hammering, we can detect all these patterns as they drift around because the bad guys are attacking in volume. Machine learning can out-adapt to these guys, so we’re bringing to the enterprise real protection, not just detection.”
At some point, you can expect the machine learning systems in Azure AD and ATA to start working together. “Active Directory on premise is this incredible nexus for data collection and analysis because essentially every use of an app on premise ends up going through the directory somehow,” points out Microsoft’s Alex Simons. “Part of the vision is to take all the data we’re collecting in the cloud and to marry it up with data we’re collecting on premise, to bring those data source together.”
Whether you look at on premise or cloud systems, it might be time to take machine learning security systems seriously; because bad as it is today, it’s going to get even harder to stay ahead of the hackers. Weinert warns: “We're now seeing that the criminals are starting to invest in machine learning systems themselves.”
Sign up for CIO Asia eNewsletters.