Darktrace – Enterprise Immune System
Learns what ‘self’ is – and detects new emerging threats
The Enterprise Immune System is a new technological approach to cyber defense, based on the principle that organizations face a constant level of threat from within. Inspired by the self-learning intelligence of the human immune system, this new approach is delivered by cutting-edge technology that is capable of learning ‘self’ within an organization in real time – enabling it to detect emerging threats that bypass other security controls.
Cyber threats take many forms and are increasingly difficult to predict – like viral DNA, they mutate and evolve constantly in order to survive within their chosen environment. The human body deals with this problem through its immune system, which continually learns about what is normal for our individual bodies and can identify outliers which do not fit that evolving pattern of normality.
Darktrace applies the same logic to the enterprise environment. Enterprise Immune System technology iteratively learns a pattern of life for every network, device and individual user, correlating this information in order to spot subtle deviations that indicate in-progress threats.
“The Enterprise Immune System is Darktrace’s leading cyber defense solution, the first to implement new, unsupervised machine learning and probabilistic mathematics to the challenge of cyber security.
Designed for organizations of all sizes, from small businesses through to large corporations, the Enterprise Immune System is a software platform that allows Darktrace to detect the most subtle cyber-attacks from within the network without any prior knowledge.
Powered by machine learning and a novel branch of Bayesian probability theory developed at the University of Cambridge, the Enterprise Immune System is the only cyber defense technology that is capable of detecting anomalous behaviors within vast data sets without any prior knowledge of what it is looking for.
With total visibility into network activity, Darktrace is uniquely capable of identifying and classifying threats in real time. The Enterprise Immune System creates unique behavioral models for every user and device, and for the enterprise as a whole, by correlating many weak indicators and subtle changes in information that would otherwise go unnoticed in the noise of a busy network. Using these models, Darktrace’s technology is able to rapidly piece together a compelling picture of genuine emerging threat activity without producing floods of false positives.
Darktrace is the first fully-scalable cyber defense technology that applies the immune system approach. It is proven to find anomalies that bypass all other legacy security tools, allowing organizations to proactively and pragmatically manage serious cyber risk before damage is done
“Darktrace’s unique capabilities:
•Self-learning technology that models normal and abnormal behaviour within a network.
•Begins analysis from first day of deployment.
•Behavioural monitoring for individuals, devices and enterprise.
•Darktrace is adaptive and ‘normal’ network behaviour benchmark is continuously refined.
•Cyber Threat Analysts can detect malicious insiders and unknown advanced threat actors early, acting sooner, therefore reducing incident response times and cost.”
“•Powered by unsupervised machine learning and Bayesian mathematics
•Learns normal and abnormal behavior in real time and detects emerging anomalies
•Auto-classification of threats, supporting workflow and collaboration
•Complete analysis and visibility of 100% of network traffic
•Protects against internal and external cyber attacks