Rohde & Schwarz Cybersecurity and Napatech Launch Advanced Network Threat Detection Solution
November 2017 by Marc Jacob
Rohde & Schwarz Cybersecurity and Napatech announced the launch of a fine-grained network threat detection solution. It provides detailed data to security information and event management (SIEM) systems and threat intelligence platforms.
The solution provides full traffic visibility in real time via insights from the deep packet inspection (DPI) engine. In combination with the advanced analytics provided by machine learning and anomaly detection technologies, this enables enterprises to detect both known threats that have a documented detection signature, as well as new attacks and abnormalities that have not been identified previously and are difficult to spot using classical cybersecurity tools. These complex and new attacks can be revealed by correlating heuristic data and behavioral analysis as well as by extracting content and metadata of network traffic. When linked to threat intelligence platforms or SIEM tools such as Splunk, the collected data is correlated and analyzed to detect and alert on abnormal network behavior in order to apply security policies. Additionally, the solution includes network traffic recording capabilities delivering fine-granular visibility of traffic history for accurate forensic analysis and threat qualification.