Generic LLMs in Cybersecurity

Generic Large Language Models (GLLMs) are continually being released with increased size and capabilities, enhancing the capabilities of these tools as universal problem solvers. While the reliability of GLLMs’ responses is questionable in many situations, these models are often augmented or retrofitted with external resources for various applications, including cybersecurity. The talk will discuss major security concerns of these pre-trained models: first, GLLMs are prone to adversarial manipulation, such as model poisoning, reverse engineering, and side-channel cyberattacks. Second, the security issues related to LLM-generated codes using open-source libraries/codelets for software development can involve software supply chain attacks. These may result in information disclosure, access to restricted resources, privilege escalation, and complete system takeover. This talk will also cover the benefits and risks of using GLLMs in cybersecurity, particularly in malware detection, log analysis, intrusion detection, etc. I will highlight the need for diverse AI approaches (non-LLM-based smaller models) trained with application-specific curated data, fine-tuned for well-tested security functionalities in identifying and mitigating emerging cyber threats, including zero-day attacks. Note: – You will require a Zoom account (free to obtain) to join the meeting. This requirement is to avoid Zoom bombing. Please sign in using the email address tied to your Zoom account, not necessarily the one you used to register for the event. Register here: https://sjsu.zoom.us/meeting/register/2XuaGc9ISoCWOu1dt6ANog – By registering for this event, you agree that IEEE and the organizers are not liable to you for any loss, damage, injury, or any incidental, indirect, special, consequential, or economic loss or damage (including loss of opportunity, exemplary or punitive damages). The event will be recorded and will be made available for public viewing. Co-sponsored by: Vishnu S. Pendyala, SJSU Speaker(s): Dr. Vishnu S. Pendyala, Prof. Dipankar Dasgupta, IEEE Fellow, NAI Fellow, AIIA Fellow Virtual: https://events.vtools.ieee.org/m/489327