The new year allows us to look back on 2018 and gain a fresh perspective on what happened in the world of security – and what’s to come.
Most importantly, robots aren’t running around in the wild…yet. But AI, machine learning and deep learning are getting more sophisticated, and their use cases go beyond the everyday big data contextualising, now permeating the entire business; martech, regtech and chatbots being just some of the applications.
The theme of 2018 was, of course, data. From GDPR to bot accounts to megabreaches, data was an everyday headline. Application security was centre stage, as malicious or snooping apps were uncovered, and banks took advantage of the consumer movement to biometrics and started to integrate face and voice authentication to offer additional protection to their customers.
I rallied the troops in the AimBrain office to find out their thoughts on the three most important security trends we can expect to see in 2019.
AimBrain on: Machine Learning
2018 saw an increase in the use of machine learning and other AI-powered ways of enhancing standard business processes and operations. In financial services, banks are using machine learning in a number of ways – for example, algorithmic trading. But institutions are also using it for security purposes, using machine learning to sift through large transactional data sets both new and historic, to identify unusual behaviours, create models and ultimately prevent fraud.
Here, agile start-ups are leading the way: consistently improving and reinventing how security threats are detected, isolated and immobilised. Banks, in turn, will continue to benefit from this research and development in 2019, as the relationship between fintechs and finance moves from exploratory to symbiotic.
AimBrain on: society and security
The combined millennial and Gen Z demographics will soon outnumber Gen Xers in the workplace, valuing workplace flexibility and remote working, which in turn raises issues around security particularly in BYOD workplaces.
Headlines around data sharing was huge in 2018, so in 2019 we could expect some dramatic changes in regulation around the physical transit of data. With password hygiene being shockingly poor, phishing becoming more sophisticated and credential stuffing becoming a fast and devastatingly destructive threat, we should expect to see greater minimum security standards this year – such as mandatory 2FA or biometrics – hopefully outlawing passwords for good.
AimBrain on: invisible user authentication
Behavioural biometrics (the monitoring of a user’s behaviours across devices or peripherals) is gathering momentum. This isn’t just in the 121 (or ‘known user’) authentication – comparing a user’s standard behaviours to spot for differences that could signal account takeover – but also in recognising human-based fraud (onboarding using stolen or synthetic credentials for example) and machine-based fraud (automated attacks, scripted logins and so on). Machine learning is helping organisations build ever more detailed profiles of fraudulent behaviour, and playing a critical role in a digital world, invisibly to the end user.
Apps are realising this, as we see Chrome fixing its ‘access to master passwords’ vulnerability, and app builders consideration of passive authentication instead of pre-filled passwords and cached information.
2019 will probably be more about incremental progress rather than revolution. Expect it to build on 2018 – with more developments in AI and machine learning, better security standards, higher demand for invisible authentication, and no killer robots (we hope).
Now it’s time to meet the team. Read their predictions here on Slideshare.
Why not check back with us next year to see how these security trends played out over 2019?