Microsoft is sponsoring a Machine Learning Security Evasion Competition this year, with partners CUJO AI, VMRay, and MRG Effitas, the company has announced.
The competition, which welcomes both machine learning (ML) practitioners and cybersecurity professionals, will allow researchers to exercise their defender and attacker skills, Microsoft says.
The event builds on a similar competition launched at AI Village in August 2019 at DEFCON 27, where contestants participated in a white-box attack against static malware ML models, with many of them identifying approaches that completely and simultaneously bypassed three ML antimalware models.
This year’s contest, the tech company says, is similarly designed to bring to the spotlight countermeasures to adversarial behavior, but also to raise awareness on the various manners in which malware may evade ML systems.
Researchers who score highest at the event are required to publish their detection or evasion strategies in order to win. This year, two different challenges are proposed to researchers.
Set to take place between June 15 and July 23, 2020, the Defender Challenge is meant for the development of novel defenses for attackers to evade. Submissions will be subjected to real-world tests and will have to detect real malware at moderate false-positive rates.
Between August 6 and September 18, 2020, there will be an Attacker Challenge, which will feature a black-box threat model. API access will be provided to hosted antimalware models, including those successfully developed in the Defender Challenge.
Contestants will be required to evade these models using “hard-label” query results and samples from final submissions will be executed in a sandbox to verify their functionality. The final ranking will take into consideration evasion rates and the total number of required API queries.
Microsoft promises prizes for the winner and runner-up for each challenge: a Grand Prize ($2,500 in Azure credits) and a First Prize ($500 in Azure credits), respectively. Both individuals and teams are welcomed to the competition and can register at mlsec.io during the challenge window.
Related: Zero-Day Exploits Earn Hackers Over $500K at Chinese Competition
Related: Government Withdraws Cash Prize From President’s Cup Cybersecurity Competition
Related: NATO Opens Defense Innovation Challenge Seeking C4ISR Solutions
More from Ionut Arghire
- Information of 2.5M People Stolen in Ransomware Attack at Massachusetts Health Insurer
- US, South Korea Detail North Korea’s Social Engineering Techniques
- High-Severity Vulnerabilities Patched in Splunk Enterprise
- Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals
- Google Temporarily Offering $180,000 for Full Chain Chrome Exploit
- Toyota Discloses New Data Breach Involving Vehicle, Customer Information
- Adobe Inviting Researchers to Private Bug Bounty Program
- Critical Vulnerabilities Found in Faronics Education Software
Latest News
- Insider Q&A: Artificial Intelligence and Cybersecurity In Military Tech
- In Other News: Government Use of Spyware, New Industrial Security Tools, Japan Router Hack
- OpenAI Unveils Million-Dollar Cybersecurity Grant Program
- Galvanick Banks $10 Million for Industrial XDR Technology
- Information of 2.5M People Stolen in Ransomware Attack at Massachusetts Health Insurer
- US, South Korea Detail North Korea’s Social Engineering Techniques
- High-Severity Vulnerabilities Patched in Splunk Enterprise
- Idaho Hospitals Working to Resume Full Operations After Cyberattack
