The Future of Threat PreventionBricata is the leading developer of Next Generation Intrusion Prevention Systems (NGIPS) technology, providing innovative, disruptive, high‐speed, high‐performance network security and data protection solutions.
John Trauth | Chief Executive Officer
The Science of Security 2
Agenda• Background
• The Importance of Visibility
• Threat Isolation Engine
• High Performance from the Edge to the Core
• Bricata ProAccel Threat Labs™
The Science of Security 3
Who is Bricata• Founded by four industry leaders in 2014 based on product development
started in 2012
• Management team with over nine decades of combined cyber security, engineering, sales, and management experience
• Innovative, multi‐processor, multi‐threaded technology that provides high‐performance processing
• Offers Next Generation Intrusion Prevention System (NGIPS), including: Bricata ProAccel appliance Bricata ProAccel for Cloud Bricata Central Management Console (CMC) Bricata Threat Exchange (BTX)
The Science of Security 4
Visibility is Everything• Full speed performance with 27,000
signatures enabled• File based detection with over 1 million
MD5 checksums• IP reputation analysis• Mobile malware • Multiple pattern matching algorithms• Application layer protocol parsers• Tunnel decoding• Full IPv6 aware inspection• Custom signature creation and full import
of: Suricata SNORT SNORT VRT PCRE
Conventional Limit
9X More Threat Coverage
Bricata’s 27,000 Signatures
The Science of Security 5
Bricata Packet Capture Analytics for Threat Analysis
Internet
PCAPData Store
Validated Threat
Validated Threat Event with Meta/Payload & Packet Data
Ability to search PCAP data store
NGIPS CMCFull Packet Capture
The Science of Security 6
Threat Isolation Engine
• Anomaly detection and reputation analysis• Application awareness• Highly scalable for remote office protection• GeoIP reputation & location
• Full speed with 27,000 signatures enabled• 1 million MD5 checksums for malware• Threat Intelligence Eco‐system• Custom signature creation
Traffic monitoring & event management Log aggregation, correlation & forwarding to SIEM
Full packet capture for complete contextual understanding of security incidents
Regularly updated signature library & threat intelligence sharing
Data exfiltration prevention automationCentral management console (CMC)
for complete dashboard control
Cassandra data analytics engine
The Science of Security 7
Proven Performance
• Independent 3rd Party Testing of LX100
• Exceeded published performance capabilities
• 112 Gbps bi‐directional throughput with all 27,000 signatures and full packet capture enabled
• Fastest NGIPS and PCAP on the market
The Science of Security 8
Tele‐workers, partners, and customers
Remote offices and branches
Virtual machines (VMs)
Bricata Deployment Options
The Science of Security 9
Bricata ProAccel Threat Labs™
• 40 active researchers from around the world
• Processing ~300,000 new & unique malware samples daily
• Automated malware analysis with Bricata SpiderNet
• 10 active security content developers (developing and delivering new rule updates daily)
• Bricata Threat Exchange BTX (Opt in threat exchange program)