SIEM, for example, are a crucial part of modern network security architectures. However, unlike many other cybersecurity tools, SIEM solutions do not directly work to stop cyberattacks. Instead, SIEM solutions collect information about security events on the network to generate alerts or instruct other security controls to take a pre-set action. SIEM solutions can be invaluable for automating security incident responses. The challenge is in managing SIEM solutions to eliminate false positives and sort through the massive amount of data they supply quickly and efficiently. SIEM solutions typically only get default Syslog messages from the standard server applications but are oblivious to any other applications used within an enterprise network, including bring your own devices (BYOD) but also deep visibility behind NATing devices such as WLAN routers.
R&S®Net Sensor OEM has a strong core that provides deep packet inspection (DPI) and fast packet processing to offer real-time reports on the entire network and its subscribers. This way, SIEM vendors can obtain real-time visibility into both plain and encrypted network traffic, as well as information on traffic KPIs. Weekly signature updates ensure that traffic classification is always up to date. User and control plane correlation allows resolving network data at the subscriber level and gaining insights into subscriber behavior for analytics use cases. Additionally, R&S®Net Sensor OEM tracks 100% of all IP communication in real time, providing outstanding performance.
R&S®Net Sensor OEM and the OEM DPI software R&S®PACE 2 will be demonstrated at the RSA Conference in San Francisco in the German Pavilion at the Rohde & Schwarz booth 5671 (North Expo) from February 24-28. Additionally, Rohde & Schwarz Cybersecurity will also be part of the Rohde & Schwarz booth, offering network, endpoint, application and cloud security solutions. This year’s focus will be on the award-winning cloud security solution R&S®Trusted Gate, which encompasses secure collaboration in the cloud on platforms such as Microsoft Office 365™ and secure data exchange regardless of the infrastructure used. The data-centric approach to securing confidential information protects companies from cyberattacks, data theft and manipulation.
Press contact:
Christine Lorenz, phone: +1 503-313-1884, email: christine.lorenz@rohde-schwarz.com