HUEVERTECH

Korea

+ HUEVERTECH

Security ▼

Security >

Darktrace

Darktrace applies the biological principles of the human immune system to the challenge of protecting the enterprise from advanced cyber-threats. Our vision is to use cutting-edge technology to help organizations detect abnormal behavior within their networks in real time, before these incidents develop into damaging cyber-attacks.

Enterprise Immune System
Darktrace’s award-winning Enterprise Immune System technology is uniquely capable of detecting and responding to the most subtle cyber-threats within the network, including insider threat. Powered by advanced machine learning and mathematics, the Enterprise Immune System automatically and adaptively learns the ‘pattern of life’ for every user, device and network, in order to detect emerging behaviors that represent real threats. This self-learning technology provides corporations with comprehensive visibility into their networks’ activity, allowing them to proactively respond to threats and mitigate risk.
Machine Learning and Cyber Security
The legacy approach of surrounding your information with higher and higher walls is not sufficient against today’s threat landscape. New advances in machine learning and mathematics, developed by specialists from the University of Cambridge, have allowed a new era of cyber security, which takes for granted that threat is permanently inside the network. Instead of pre- defining ‘bad’ behaviors and relying on prior knowledge about previous attack methods, Darktrace’s machine learning is capable of automatically modeling and clustering information dynamically and at speed.

Darktrace Threat Visualizer – real-time 3D interface for threat investigation

DARKTRACE & THREAT VISUALIZER

Product Overview

Darktrace is a network solution for detecting and investigating emerging cyber-threats that evade traditional security tools. It is powered by Enterprise Immune System technology, which uses machine learning and mathematics to monitor behaviors and detect anomalies in your organization’s network. The Enterprise Immune System's mathematical approaches do not require signatures or rules and so can detect emerging ‘unknown unknown’ attacks that have not been seen before.

Darktrace takes passive feeds of raw network traffic from the centers of your networks. Once connected, the technology immediately begins using a range of mathematical approaches to create numerous models of behavior for each individual user and device within the organization. The Enterprise Immune System’s self-learning mathematics work from day one, detecting anomalous behaviors on the network. They continue to learn on an ongoing basis - constantly updating as the organization evolves.

Creating powerful ‘pattern of life’ models of every individual and device on your network allows Darktrace to detect subtle shifts in behaviors, such as the way someone is using technology, a machine’s data access patterns, or trends in communications. This may indicate any number of potentially threatening events, such as the theft of a user’s credentials, a compromised device, or the actions of a disaffected or negligent employee.

Darktrace monitors over 350 dimensions of user and device activity. This allows it to detect a range of anomalies, including network reconnaissance and traversal, unexpected downloads from unusual internet domains, intranet or file system cloning, sensitive data logins from a new device and location, unusual applications and protocols, or a change in pattern of information uploads. These activities may be worthy of investigation if they represent significant departure from normal behavior.

Threat Visualizer

The Threat Visualizer is Darktrace’s graphical and interactive 3D interface, which enables analysts and business executives to intuitively visualize behaviors and investigate anomalies, without requiring an understanding of the advanced mathematics that power the platform.

Key Features
  • Adaptive – evolves with your organization
  • Self-learning – constantly refines its understanding of normal
  • Real-time – spots threats as they emerge
  • Works from day one – delivers instant value
  • Low false positives – correlation of weak indicators
  • Data agnostic – ingests all data sources
  • Highly accurate – models human, device and enterprise behavior
  • Scalable – all sizes of network, including over a million devices

Darktrace Enterprise Immune System