Saint Security uses Rohde & Schwarz Cybersecurity’s deep packet inspection (DPI) software R&S PACE 2 in its network-based advanced malware response solution MNX to identify, analyze, judge and block malicious activity. By embedding the DPI engine, they unlock the full potential of Artificial Intelligence-based (AI) analysis methodologies to fingerprint sophisticated cyber-attacks.
Rohde & Schwarz Cybersecurity, a leading IT security company, and Saint Security, a leading vendor of network protection solutions, announce the release of a technology solution that leverages artificial intelligence, machine learning and big data-based profiling methodologies to fight advanced persistent threats (APTs).
The solution identifies and blocks various types of malware that cannot be detected by off-the-shelf security solutions. The DPI engine R&S PACE 2 serves as the key enabling feature by extracting file content and metadata to identify potentially dangerous executables caused by APTs.
“The ability of extracting file content extended the functionality of the network-based advanced malware response solution MNX to analyze all network traffic, services and protocols across all ports with an extremely fine granularity,” says Kihong KIM, CEO of Saint Security. “The extracted information is key to better identify and investigate multi-stage, advanced persistent threats such as malicious emails or ransomware. This enormously enhanced our product’s quality and our customers can now rely on a sophisticated security solution that even detects previously unknown or unseen threats,” adds KIM.
Saint Security’s network protection solution intercepts possible APTs at any point in a network. In order to fingerprint malicious activity and to unlock the full potential of their AI-based analysis methodologies, they decided to embed the DPI engine R&S PACE 2 from Rohde & Schwarz Cybersecurity to get a deep understanding of the observed network traffic.
R&S PACE 2 extracts file content and metadata such as files attached to emails (e.g. .pdf, .exe or .doc) or sent through files transfers from within the traffic in real time. This enables Saint Security to identify potentially dangerous executables caused by APTs and set up advanced security and traffic management policies.
Machine learning and AI are critical to network security as cybercriminals around the world incessantly release new malware types that can morph and look like harmless files. It is almost impossible for antivirus engines to detect these threats as they can bypass legacy security approaches, gain hold within a network and make organizations vulnerable to data breaches.
Find out more about the technology: https://ipoque.com/news-media/resources/case-studies/case-study-threat-analysis
R&S PACE 2
The DPI software library R&S PACE 2 detects and classifies thousands of applications and protocols. Used by IT security vendors, R&S PACE 2 is a powerful and reliable tool which combines deep packet inspection and behavioral traffic analysis – regardless of whether the protocols use advanced obfuscation, port-hopping techniques or encryption. DPI delivers clear visibility on the nature of IP traffic, on whether it is wanted or unwanted, good or malicious. It is needed everywhere in the network where intelligent management decisions need to be made.
Rohde & Schwarz Cybersecurity
Rohde & Schwarz Cybersecurity is a leading IT security company that protects companies and public institutions around the world against cyberattacks. The company develops and produces technologically leading solutions for information and network security, including highly secure encryption solutions, next generation firewalls and software for network analysis and endpoint security. The award-winning and certified IT security solutions range from compact, all-in-one products to customized solutions for critical infrastructures. The product portfolio also includes vulnerability scanners and firewalls for business-critical web applications. To prevent cyberattacks proactively, rather than reactively, our trusted IT solutions are developed following the security-by-design approach. More than 500 people are employed at the current locations in Germany, France and Denmark.
Rohde & Schwarz Cybersecurity, a leading IT security company, and Saint Security, a leading vendor of network protection solutions, announce the release of a technology solution that leverages artificial intelligence, machine learning and big data-based profiling methodologies to fight advanced persistent threats (APTs).
The solution identifies and blocks various types of malware that cannot be detected by off-the-shelf security solutions. The DPI engine R&S PACE 2 serves as the key enabling feature by extracting file content and metadata to identify potentially dangerous executables caused by APTs.
“The ability of extracting file content extended the functionality of the network-based advanced malware response solution MNX to analyze all network traffic, services and protocols across all ports with an extremely fine granularity,” says Kihong KIM, CEO of Saint Security. “The extracted information is key to better identify and investigate multi-stage, advanced persistent threats such as malicious emails or ransomware. This enormously enhanced our product’s quality and our customers can now rely on a sophisticated security solution that even detects previously unknown or unseen threats,” adds KIM.
Saint Security’s network protection solution intercepts possible APTs at any point in a network. In order to fingerprint malicious activity and to unlock the full potential of their AI-based analysis methodologies, they decided to embed the DPI engine R&S PACE 2 from Rohde & Schwarz Cybersecurity to get a deep understanding of the observed network traffic.
R&S PACE 2 extracts file content and metadata such as files attached to emails (e.g. .pdf, .exe or .doc) or sent through files transfers from within the traffic in real time. This enables Saint Security to identify potentially dangerous executables caused by APTs and set up advanced security and traffic management policies.
Machine learning and AI are critical to network security as cybercriminals around the world incessantly release new malware types that can morph and look like harmless files. It is almost impossible for antivirus engines to detect these threats as they can bypass legacy security approaches, gain hold within a network and make organizations vulnerable to data breaches.
Find out more about the technology: https://ipoque.com/news-media/resources/case-studies/case-study-threat-analysis
R&S PACE 2
The DPI software library R&S PACE 2 detects and classifies thousands of applications and protocols. Used by IT security vendors, R&S PACE 2 is a powerful and reliable tool which combines deep packet inspection and behavioral traffic analysis – regardless of whether the protocols use advanced obfuscation, port-hopping techniques or encryption. DPI delivers clear visibility on the nature of IP traffic, on whether it is wanted or unwanted, good or malicious. It is needed everywhere in the network where intelligent management decisions need to be made.
Rohde & Schwarz Cybersecurity
Rohde & Schwarz Cybersecurity is a leading IT security company that protects companies and public institutions around the world against cyberattacks. The company develops and produces technologically leading solutions for information and network security, including highly secure encryption solutions, next generation firewalls and software for network analysis and endpoint security. The award-winning and certified IT security solutions range from compact, all-in-one products to customized solutions for critical infrastructures. The product portfolio also includes vulnerability scanners and firewalls for business-critical web applications. To prevent cyberattacks proactively, rather than reactively, our trusted IT solutions are developed following the security-by-design approach. More than 500 people are employed at the current locations in Germany, France and Denmark.
