Detection solution stifles cyber threats in infancy

23rd November 2017
Posted By : Mick Elliott
Detection solution stifles cyber threats in infancy

A fine-grained network threat detection solution has been introduced by joint developers Rohde & Schwarz Cybersecurity and Napatech. It provides detailed data to security information and event management (SIEM) systems and threat intelligence platforms. The solution will be showcased by both companies at Black Hat Europe 2017, (December 4 to 7) at ExCel London.

In combination with the advanced analytics provided by machine learning and anomaly detection technologies, this enables enterprises to detect both known threats that have a documented detection signature, as well as new attacks and abnormalities that have not been identified previously and are difficult to spot using classical cybersecurity tools.

These complex and new attacks can be revealed by correlating heuristic data and behavioural analysis as well as by extracting content and metadata of network traffic.

When linked to threat intelligence platforms or SIEM tools such as Splunk, the collected data is correlated and analysed to detect and alert on abnormal network behaviour in order to apply security policies.

Additionally, the solution includes network traffic recording capabilities delivering fine-granular visibility of traffic history for accurate forensic analysis and threat qualification.

“The advanced threat detection solution provides an all rounded approach to threat analytics: from classical IDS-like alarms to identification of potential anomalies and threats based on correlated deep traffic information and statistics in time,” said Irina Palade, Product Manager at Rohde & Schwarz Cybersecurity. “This makes it possible to detect compromised hosts, spot lateral movement or network malfunction – whether it’s malware, insider action or advanced persistent threat.”

“The solution provides a key source of threat intelligence not only to protect against zero-day attacks and to reduce detection-to-containment times but also to aid in the follow-up investigation to make security improvements after a threat has been neutralized,” added Jarrod J.S. Siket, Chief Marketing Officer at Napatech.


You must be logged in to comment

Write a comment

No comments




Sign up to view our publications

Sign up

Sign up to view our downloads

Sign up

Startups Magazine Launch Party: Financing a Startup
24th July 2018
United Kingdom WeWork Waterhouse Square, London
European Microwave Week 2018
23rd September 2018
Spain Ifema Feria De Madrid
IoT Solutions World Congress 2018
16th October 2018
Spain Barcelona
Engineering Design Show 2018
17th October 2018
United Kingdom Ricoh Arena, Coventry
Maintec 2018
6th November 2018
United Kingdom NEC, Birmingham