Upload
others
View
2
Download
0
Embed Size (px)
Citation preview
The Future of Threat PreventionBricata is the leading developer of Next Generation Intrusion Prevention Systems (NGIPS) technology, providing innovative, disruptive, high‐speed, high‐performance network security and data protection solutions.
John Trauth | Chief Executive Officer
The Science of Security 2
Agenda• Background
• The Importance of Visibility
• Threat Isolation Engine
• High Performance from the Edge to the Core
• Bricata ProAccel Threat Labs™
The Science of Security 3
Who is Bricata• Founded by four industry leaders in 2014 based on product development
started in 2012
• Management team with over nine decades of combined cyber security, engineering, sales, and management experience
• Innovative, multi‐processor, multi‐threaded technology that provides high‐performance processing
• Offers Next Generation Intrusion Prevention System (NGIPS), including: Bricata ProAccel appliance Bricata ProAccel for Cloud Bricata Central Management Console (CMC) Bricata Threat Exchange (BTX)
The Science of Security 4
Visibility is Everything• Full speed performance with 27,000
signatures enabled• File based detection with over 1 million
MD5 checksums• IP reputation analysis• Mobile malware • Multiple pattern matching algorithms• Application layer protocol parsers• Tunnel decoding• Full IPv6 aware inspection• Custom signature creation and full import
of: Suricata SNORT SNORT VRT PCRE
Conventional Limit
9X More Threat Coverage
Bricata’s 27,000 Signatures
The Science of Security 5
Bricata Packet Capture Analytics for Threat Analysis
Internet
PCAPData Store
Validated Threat
Validated Threat Event with Meta/Payload & Packet Data
Ability to search PCAP data store
NGIPS CMCFull Packet Capture
The Science of Security 6
Threat Isolation Engine
• Anomaly detection and reputation analysis• Application awareness• Highly scalable for remote office protection• GeoIP reputation & location
• Full speed with 27,000 signatures enabled• 1 million MD5 checksums for malware• Threat Intelligence Eco‐system• Custom signature creation
Traffic monitoring & event management Log aggregation, correlation & forwarding to SIEM
Full packet capture for complete contextual understanding of security incidents
Regularly updated signature library & threat intelligence sharing
Data exfiltration prevention automationCentral management console (CMC)
for complete dashboard control
Cassandra data analytics engine
The Science of Security 7
Proven Performance
• Independent 3rd Party Testing of LX100
• Exceeded published performance capabilities
• 112 Gbps bi‐directional throughput with all 27,000 signatures and full packet capture enabled
• Fastest NGIPS and PCAP on the market
The Science of Security 8
Tele‐workers, partners, and customers
Remote offices and branches
Virtual machines (VMs)
Bricata Deployment Options
The Science of Security 9
Bricata ProAccel Threat Labs™
• 40 active researchers from around the world
• Processing ~300,000 new & unique malware samples daily
• Automated malware analysis with Bricata SpiderNet
• 10 active security content developers (developing and delivering new rule updates daily)
• Bricata Threat Exchange BTX (Opt in threat exchange program)