Napatech and Rohde & Schwarz collaborate for cybersecurity detection
Rohde & Schwarz Cybersecurity and Napatech have jointly developed a network threat detection system. It will be launched next week at Black Hat Europe 2017, in the UK (4 to 7 December, at the ExCel Centre, London).
It combines a real-time intrusion detection system and network traffic recording capabilities to detect known and unknown cyber threats early.
Rohde & Schwarz Cybersecurity is an IT security provider, and Napatech specialises in reconfigurable computing platforms. The two have partnered to launch a fine-grained network threat detection system. It is claimed to provide detailed data to security information and event management (SIEM) systems and threat intelligence platforms.
It provides full traffic visibility in real-time via insights from the deep packet inspection (DPI) engine. Advanced analytics are provided by machine learning and anomaly detection technologies to enable enterprises to detect both known threats that have a documented detection signature, as well as new attacks and abnormalities that have not been identified previously and are difficult to spot using classical cybersecurity tools.
These complex and new attacks can be revealed by correlating heuristic data and behavioural analysis as well as by extracting content and metadata of network traffic, explains Rodhe & Schwarz Cybersecurity. When linked to threat intelligence platforms or SIEM tools such as Splunk, the collected data is correlated and analysed to detect and alert on abnormal network behaviour in order to apply security policies. Additionally, network traffic recording capabilities deliver fine-granular visibility of traffic history for accurate forensic analysis and threat qualification.
“The advanced threat detection solution provides an all rounded approach to threat analytics from classical IDS-like alarms to identification of potential anomalies and threats based on correlated deep traffic information and statistics in time,” said Irina Palade, product manager at Rohde & Schwarz Cybersecurity. “This makes it possible to detect compromised hosts, spot lateral movement or network malfunction – whether it’s malware, insider action or advanced persistent threat.”
Visit Rohde & Schwarz CyberSecurity at booth 205 and 206, Black Hat Europe, at the ExCel London, December 4-7.