Revolutionary Capability

//Revolutionary Capability
Revolutionary Capability 2024-10-11T15:26:27-05:00

RESPOND is based on several highly capable applications that, used together, automate discovery, analysis and remediation. The discovery and analysis program has been developed through the analysis of huge amounts of data flows on worldwide networks over the past dozen years. Any AI-driven system is only as good as the data that it feeds on, and this program has fed on more relevant data samples—known good and bad—than the sum of all other samples ingested by all of its competitors. This program also uses patented machine learning to baseline the normal operating status of the monitored networks and is very effective at picking out and then analyzing unexpected deviations, like attempted data exfiltration. This program knows thousands of known exploits and signatures indicative of infections and malicious behavior. The demonstrated detection accuracy is over 99 percent, and the discovery and analysis is generally done within 100 milliseconds. The cost of a RESPOND system includes the regular updates to the databases as new threats, signatures and exploits are discovered on those worldwide networks; always keeping the monitoring and analysis utilities up to date.

If you happen to connect a lot of non-owned devices to your networks you can add the OT Device monitoring program. This adds analysis of controls-specific data flows, which picks out infected or malicious environmental, industrial or process control device communications even better. Specific industrial applications and protocols from fifty industrial controls vendors are added to the extensive monitoring and analysis application library.

If you run a lot of devices that speak NetFlow, you can add the NetFlow analysis enhancement to the monitoring and analysis program. This deepens the already deep analysis of NetFlow-based communications even more.

Next: Some Real-World Benefits

RESPOND—a new way to provide cyber protection

  1. Introduction
  2. Back-End Improvement
  3. Revolutionary Capability
  4. Some Real-World Benefits
  5. Project Particulars
  6. RESPOND Costs
  7. Adding in a Network Access Control System (NAC)
  8. Expanding a RESPOND System
  9. Respond Includes a SIEM