Some Real-World Benefits

Almost everyone is worried about getting malware loaded onto their networked devices, because that local malware can go on to install ransomware, steal information or cause other harm. Every network user now gets at least one to two emails with attachments that can load malware on their computers if they are clicked. There’s a big market in trying to keep people from clicking on those attachments in the first place, with phishing analysis, phishing training, and sending fake phishing emails to users that then identify and shame them. These are all valuable services. RESPOND merely augments these services by looking at all file downloads for malware content, and then generating an alert when it detects a malware download. That alert contains information on the device downloading malware, the origin of the malware download, and the type of malware downloaded. This gives you the ability to take action on the downloading device and block the originating location in your firewall so that this location will no longer send malware to you. If you happen to use a FortiGate firewall, all malware downloads will automatically be blocked by that firewall. Even encrypted malware downloads will be unencrypted, identified and automatically blocked. You can use RESPOND to eliminate malware infections and also automatically block all malware downloads immediately. No more malware!

Some people are also worried about data theft. Having a local device upload sensitive data to some foreign site is generally how data is stolen, and RESPOND can reduce this possibility. Its machine learning engine learns the upload patterns that are a part of normal business. It can then identify devices that do not normally upload data, or devices that upload data at unusual times, or data uploaded to unusual destinations. RESPOND also analyzes traffic patterns presented by known data theft utilities. It then sends alerts when it discovers these patterns. It can also use the firewall or other networked hardware or software to issue manual and automatic blocks.

RESPOND—a new way to provide cyber protection

1. Introduction
2. Back-End Improvement
3. Revolutionary Capability
4. Some Real-World Benefits
5. Project Particulars
6. RESPOND Costs
7. Adding in a Network Access Control System (NAC)
8. Expanding a RESPOND System
9. Respond Includes a SIEM