Iyo ikibazo cy’umutekano w’ikoranabuhanga kigeze, hari aho biba ari ngombwa. Gufata ingamba buhoro cyane, maze icyo gitangira nk’agahu gato kagahinduka ikibazo gikomeye mu kigo cyose. Aho niho hagaragara ubuhanga bwo gukora imibonano mpuzabitsina (AI) mu gusubiza impanuka - ntabwo ari isasu ry’ifeza (nubwo mu by’ukuri, rishobora kumera nk’iryabyo), ahubwo ni nk’umuntu ukina mu ikipe afite imbaraga nyinshi yinjira mu gihe abantu badashobora kwihuta bihagije. Inyenyeri yo mu majyaruguru hano irasobanutse neza: gabanya igihe cyo kuba no gufata ibyemezo . Amakuru aherutse kugaragara agaragaza ko igihe cyo kuba umutera cyagabanutse cyane mu myaka icumi ishize - gihamya y’uko kumenya vuba no kwihuta mu guteranya abakinnyi bihindura imiterere y’ibyago [4]. ([Serivisi za Google][1])
Reka turebe icyatuma ubuhanga mu gukora imibonano mpuzabitsina (AI) bugira akamaro muri uru rwego, turebe bimwe mu bikoresho, kandi tuvuge impamvu abasesenguzi ba SOC bishingikiriza kuri - kandi batizera - aba bagenzuzi bikoresha. 🤖⚡
Ingingo ushobora gukunda gusoma nyuma y'iyi:
🔗 Uburyo ubuhanga bwo gukora imibonano mpuzabitsina (AI) bushobora gukoreshwa mu mutekano w'ikoranabuhanga
Gusuzuma uruhare rwa AI mu gutahura ibitero no guhangana nabyo.
🔗 Ibikoresho byo gupima ubukorano bwa AI: Ibisubizo byiza cyane bikoresha ubukorano bwa AI
Ibikoresho byikora cyane byongera uburyo bwo gupima no kugenzura umutekano.
🔗 Ubuhanga mu by'ubugizi bwa nabi bushingiye ku ikoranabuhanga: Impamvu umutekano w'ikoranabuhanga ari ingenzi
Uburyo abatera bakoresheje ubuhanga bwo gukora ibiyobyabwenge (AI) n'impamvu ubwirinzi bugomba guhinduka vuba.
Ni iki gituma ubuhanga bwo gukora imibonano mpuzabitsina (AI) mu gusubiza impanuka bukora neza?
-
Umuvuduko : Ubuhanga bwo gukora imibonano mpuzabitsina (AI) ntibuhora butera ubwoba cyangwa ngo butegereze kafeyine. Busuzuma amakuru y’aho ibintu bigeze, amateka y’indangamuntu, ibikorwa byo mu bicu, na telemetri y’itumanaho mu masegonda make, hanyuma bugashyira ahagaragara amakuru meza cyane. Guhagarara kw’igihe - kuva ku gikorwa cy’umugabanyi kugeza ku gikorwa cy’ubwugarizi - ni byo byose [4]. ([Serivisi za Google][1])
-
Guhuza : Abantu barashya; imashini ntizishira. Uburyo bwa AI bukoresha amategeko amwe yaba ari saa mbiri z'umugoroba cyangwa saa mbiri za mu gitondo, kandi bushobora kwerekana impamvu zabwo (niba wabushyizeho neza).
-
Kumenya Imiterere : Gutandukanya, kubona ibintu bitari byo, no gusesengura bishingiye ku imbonerahamwe bigaragaza isano abantu babura - nk'ingendo zidasanzwe zo ku ruhande zijyanye n'igikorwa gishya cyateguwe hamwe n'ikoreshwa rya PowerShell riteye amakenga.
-
Uburyo bwo kwagura ibintu : Aho umusesenguzi ashobora gucunga amakuru makumyabiri mu isaha, moderi zishobora gukoresha ibihumbi, kugabanya urusaku, no gushyira ibintu ku murongo kugira ngo abantu batangire iperereza hafi y’ikibazo nyacyo.
Igitangaje ni uko ikintu gituma ubuhanga bwo gukora imibonano mpuzabitsina (AI) bugira ingaruka nziza cyane - uburyo ikoresha mu buryo buhamye - nacyo gishobora gutuma ihinduka nk'iy'ubuswa. Ntukayikoreshe neza, kandi ishobora gushyira pizza yawe mu byiciro nk'itegeko n'igenzura. 🍕
Kugereranya byihuse: Ibikoresho bya AI bizwi cyane mu gusubiza impanuka
| Igikoresho / Urubuga | Uburyo bwiza bwo gukora | Ingano y'ibiciro | Impamvu abantu bayikoresha (inyandiko zihuse) |
|---|---|---|---|
| Umujyanama wa IBM QRadar | Amakipe ya SOC y'ibigo | $$$$ | Ifitanye isano na Watson; ubushishozi bwimbitse, ariko bisaba imbaraga zo guhangana. |
| Microsoft Sentinel | Imiryango iciriritse kugeza kuri nini | $$–$$$ | Isanzwe mu bicu, ipima byoroshye, ihuzwa na Microsoft stack. |
| Darktrace SUBIZA | Amasosiyete ashaka kwigenga | $$$ | Ibisubizo bya AI byigenga - rimwe na rimwe bisa nkaho ari nk'ibijyanye n'ubumenyi bw'isi. |
| Palo Alto Cortex XSOAR | Amasekopu menshi ya orchestration | $$$$ | Automation + playbooks; birahenze, ariko birashoboye cyane. |
| SOAR ikomeye cyane | Ibidukikije bishingiye ku makuru | $$–$$$ | Ni byiza cyane mu guhuza porogaramu; UI ni ntoya, ariko abasesenguzi barayikunda. |
Icyitonderwa: abacuruzi bakomeza kugabanya ibiciro nkana. Buri gihe gerageza ukoresheje ikimenyetso gito cy'agaciro gafitanye isano n'intsinzi ishoboka (urugero, kugabanya MTTR ho 30% cyangwa kugabanya icyavuye mu isuzuma ry'ibinyoma ho kimwe cya kabiri).
Uburyo AI igenzura ibitero mbere yuko ubikora
Aha niho birushaho kuba bishimishije. Ibice byinshi by'ingenzi ntibishingira ku buryo bumwe - bivanga uburyo bwo kubona ibintu mu buryo butari bwo, uburyo bwo kugenzura, n'uburyo bwo gusesengura imyitwarire:
-
Gutahura indwara idakira : Tekereza "ingendo zidashoboka," kwiyongera k'uburenganzira butunguranye, cyangwa ibiganiro bidasanzwe hagati y'abantu basura ikigo mu masaha adasanzwe.
-
UEBA (isesengura ry'imyitwarire) : Iyo umuyobozi w'imari akuruye gigabytes za kode y'isoko mu buryo butunguranye, sisitemu ntihita ihindura imiterere yayo.
-
Ubumaji bw'isano : Ibimenyetso bitanu bidakomeye - urujya n'uruza rw'abantu ku rubuga, ibikoresho bya malware, ibimenyetso bishya by'ubuyobozi - byinjizwa mu gasanduku kamwe gakomeye kandi gafite icyizere cyinshi.
Uku kuvumbura bigira akamaro cyane iyo bihujwe n'amayeri, tekiniki, n'uburyo bw'abagaba igitero (TTPs) . Niyo mpamvu MITER ATT & CK ari ingenzi cyane; bituma imenyesha ritaboneka kandi iperereza ritagaragara nk'umukino wo gukeka [1]. ([attack.mitre.org][2])
Impamvu abantu bagifite agaciro hamwe n'ubukorano bw'ubwenge (AI)
AI izana umuvuduko, ariko abantu bazana ibintu bifatika. Tekereza sisitemu yikora ihagarika guhamagara kwa Zoom kwa CEO wawe kuko yatekerezaga ko ari ugusohora amakuru. Ntabwo ari bwo buryo bwo gutangira kuwa mbere. Uburyo bukora ni ubu:
-
AI : ikora amateka, ishyira mu byiciro ibyago, ikerekana intambwe zikurikiraho.
-
Abantu : gusuzuma intego, gutekereza ku byago by'ubucuruzi, kwemeza uburyo bwo gukumira, kwandika amasomo.
Ibi si ibintu byiza gusa - ni uburyo bwiza bwo kubigeraho. Imiterere ya IR ikoreshwa ubu isaba ko habaho amarembo yo kwemerwa n'abantu n'ibitabo by'imikino byagenwe kuri buri ntambwe: gusesengura, gusesengura, gukumira, kurandura, no kugarura. Ubuhanga bwo gukora imibonano mpuzabitsina bufasha muri buri cyiciro, ariko inshingano ziguma ari iz'umuntu [2]. ([NIST Computer Security Resource Center][3], [NIST Publications][4])
Ingaruka zisanzwe z'ubukorano mu guhangana n'impanuka
-
Ibyiza by'Ibinyoma Ahantu Hose : Imiterere mibi n'amategeko adasobanutse neza bitera abasesenguzi urusaku. Gutunganya neza no kwibuka ni ngombwa.
-
Ibice Bidasobanutse : Amakuru y’amahugurwa y’ejo hashize ntajyanye n’ubuhanga bw’uyu munsi. Gukomeza guhugura no gukoresha ibishushanyo bya ATT & CK bigabanya icyuho [1]. ([attack.mitre.org][2])
-
Kwishingikiriza cyane : Kugura ikoranabuhanga rigezweho ntibisobanura kugabanya SOC. Komeza abasesenguzi, bagamije gusa iperereza ryimbitse [2]. ([NIST Computer Security Resource Center][3], [NIST Publications][4])
Inama y'inzobere: buri gihe komeza gukoresha uburyo bwo guhindura imikorere y'intoki - iyo ikoranabuhanga rirenze urugero, ukeneye uburyo bwo guhagarika no gusubira inyuma ako kanya.
Urugero rw'Isi Nyayo: Gufata Ransomware Hakiri kare
Ibi si ibintu bitangaje mu gihe kizaza. Kwinjira mu buryo bwinshi bitangirira ku mayeri yo "kubaho mu butaka" - PowerShell . Hamwe n'uburyo bwo kumenya ibintu bukoresheje ML, uburyo budasanzwe bwo gushyira mu bikorwa bujyanye no kubona ibyangombwa no gukwirakwiza amakuru ku ruhande bushobora kugaragazwa vuba. Ayo ni yo mahirwe yawe yo gushyira mu kato imipaka mbere yuko uburyo bwo gushakisha amakuru butangira. Ubuyobozi bwa Amerika bunashimangira ko PowerShell ikora neza kandi ikoreshwa rya EDR muri ubu buryo - AI ikoresha gusa iyo nama mu bidukikije [5]. ([CISA][5])
Ni iki gikurikiraho muri AI ku bijyanye no guhangana n'ibibazo
-
Imiyoboro yo kwivura : Si ugutanga amakuru gusa - gushyira mu kato, kongera gukoresha uburyo bwo gukwirakwiza amakuru, no kuzenguruka amabanga, byose hamwe no gusubiza inyuma.
-
Isobanura neza AI (XAI) : Abasesenguzi bashaka "impamvu" kimwe n'"iki". Icyizere kiriyongera iyo sisitemu zigaragaza intambwe zo gutekereza [3]. ([NIST Publications][6])
-
Kwishyira hamwe mu buryo bwimbitse : Tegereza EDR, SIEM, IAM, NDR, n'itike yo kuboha hamwe cyane - intebe zizunguruka nke, imikorere irushaho kuba myiza.
Gahunda yo Gushyira mu Bikorwa (Ifatika, Ntabwo Irimo Ubusa)
-
Tangira n'ikibazo kimwe gifite ingaruka zikomeye (nk'ibintu byabanje bya ransomware).
-
Ibipimo bya "Funga" : MTTD, MTTR, ibisubizo bitari byo, igihe cy'isesengura cyagabanutse.
-
Gushakisha ikarita kuri ATT&CK kugira ngo hamenyekane aho iperereza rihuriye [1]. ([attack.mitre.org][2])
-
Ongeraho amarembo yo gusinya abantu ku bikorwa biteje akaga (gutandukanya ububiko, kwamburwa ibyangombwa) [2]. ([Ikigo cy’Umutekano wa Kompyuta cya NIST][3])
-
Komeza umurongo wo gupima - wo kongera gutoza . Nibura buri gihembwe.
Ese ushobora kwizera ubuhanga bwo gukora imibonano mpuzabitsina (AI) mu gusubiza ibibazo?
Igisubizo kigufi: yego, ariko hari ibyo kwitonderwa. Ibitero bya interineti byihuta cyane, ingano y'amakuru ni nini cyane, kandi abantu ni abantu. Kwirengagiza ubuhanga bwo gukora imibonano mpuzabitsina si amahitamo. Ariko kwizerana ntibivuze kwitanga buhumyi. Uburyo bwiza bwo gukora imibonano mpuzabitsina ni ubuhanga bwo gukora imibonano mpuzabitsina hamwe n'ubuhanga bw'abantu, hamwe n'ibitabo by'imikino bisobanutse neza, hamwe no gukorera mu mucyo. Fata ubuhanga bwo gukora imibonano mpuzabitsina nk'umuntu ugufasha: rimwe na rimwe ushishikaye cyane, rimwe na rimwe udafite ubushobozi bwo gukora imibonano mpuzabitsina, ariko witeguye kwinjiramo igihe ukeneye imbaraga nyinshi.
Ibisobanuro bya Meta: Menya uburyo uburyo bwo gusubiza impanuka bushingiye ku buhanga bwa siyansi (AI) byongera umuvuduko w'umutekano w'ikoranabuhanga, ukuri, no kwihangana - mu gihe ugenzura ubushishozi bw'abantu.
Hashtags:
#AI #Umutekano wa interineti #Igisubizo cy'ibyabaye #IYONGERA #Gutahura ibikangisho #Ikoranabuhanga #InformationSec #SecurityOps #Impinduka mu ikoranabuhanga
Amareferensi
-
MITER ATT & CK® - Ishingiro ry'ubumenyi. https://attack.mitre.org/
-
Itangazo ryihariye rya NIST 800-61 Rev. 3 (2025): Inama ku bijyanye no guhangana n'ibibazo n'ibyo umuntu agomba kwitaho mu gucunga ibyago by'umutekano w'ikoranabuhanga . https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r3.pdf
-
Uburyo bwo gucunga ibyago bya NIST AI (AI RMF 1.0): Gukorera mu mucyo, gusobanura, no gusobanura. https://nvlpubs.nist.gov/nistpubs/ai/nist.ai.100-1.pdf
-
Ingendo za M- Mandiant : Ingendo z'igihe cy'ubukode bw'isi. https://services.google.com/fh/files/misc/m-trends-2025-en.pdf
-
Inama za CISA zihuriweho kuri Ransomware TTPs: Kubika PowerShell na EDR kugira ngo hamenyekane hakiri kare (AA23-325A, AA23-165A).