Industry Background: The security model is shifting from passive defense to active defense
In recent years, cybercrime activities have become increasingly rampant and evolved into global challenges. Cyber attacks have evolved from organized personal acts of crime or aggression into personal crimes, organized attacks, commercialization of purposes, internationalization of the source and The trend of carrier mobility.Traditional security defense system simply can not resist the current network attacks, the entire industry is from passive protection to active defense mode change.
The latest market research report of IDC, a world-renowned analyst organization, shows that at present, most Chinese enterprise-level users' information security defense system still stays in the stage of buying security products. The security of information system is obviously insufficient, and 88.3% of enterprise users are in a backward single point Testing and local promotion stage.The more pressing issue is that attackers are aggressively using the advanced technologies of machine learning, big data, cloud and so on to attack the target system, so enterprise users urgently need to construct a proactive security defense system.
IDC believes that the network security risk situational awareness system will be the 'command center' of the active security defense system. It helps users recognize the threat environment changes, control the development trend of risk threats, proactively defend and enhance their security capabilities.
The white paper "Network Security Risk Situational Awareness System" released by IDC and Xinhua III shows that using big data analysis and cognition system and other related technologies, it builds a network security risk situational awareness system and organically combines the various components in the active security defense system Together, the active security defense system that builds intelligence can be achieved.
Innovative direction: Xinhua three state perception system to build the active defense system of the nerve center
Xinhua 3 released a new security situational awareness system, through the acquisition of the original network traffic data, combined with machine learning and artificial intelligence, massive heterogeneous security data mining and correlation analysis of attacks, threats, traffic, behavior, operation and maintenance And compliance, and generate a full range of security panoramic view so that users can quickly and accurately grasp the current security posture of the network, find out the threat handling risks in a timely manner, support security decisions and emergency responses, establish a safety early warning mechanism and enhance Overall safety protection.
Compared with other vendors on the market, Xinhua Three-State Perception System possesses four technical features of 'platformization', 'intelligence', 'visualization' and 'service-oriented': Platform: Adaptable to more than 400 types of devices, A unified platform to collect massive heterogeneous data sources; also supports multi-industry enterprise customization of personalized situational awareness system version. Intelligent: Xinhua three-state awareness system based on machine learning and expert systems, with more than 10 security business analysis engine, Range of sample data for safety analysis.At the same time, through a dozen kinds of border defense key equipment, endowed cloud-network-end collaborative defense capabilities.Serve: Xinhua three-state awareness system provides with more than 300 compliance Check the configuration items of services to help users configure the standard and compliance vulnerability checks to effectively detect the risk of vulnerabilities.In addition, it also provides 24-hour automated process automation and safety of operation and maintenance services, real-time protection of the user's system security.Visualization: Xinhua three Situation Awareness System Personalized cockpit with panoramic map for third party oversight specialists, business operations specialists, information security specialists and IT operations The four different roles of the administrator can display the corresponding security risk information, meanwhile, presenting five-dimensional security information with rich data visualization effects, including strategy, assets, traffic, business and behavior, and realizing multi-dimensional visualization of security events.
From the user's point of view, the core value of Xinhua Three-State Perception System lies in its ability to help users enhance their ability to make decisions in advance, find and solve problems quickly, improve the efficiency of operation and maintenance, meet the requirements of safety compliance, and realize the prediction of threats to security risks Future, active discovery, collaborative defense, intelligent evolution 'in all aspects of the advantages of the ability to build intelligent active defense system for users to provide the core support: Predict the future: to secure big data, based on the attack trend analysis, abnormal traffic judgments and terminals Behavior detection to achieve 'predictable trend' and realize 'foresee the future' of security risk threat.active discovery: Xinhua Three-State Perception System builds a collaborative active discovery system of cloud-network-end, establishes a knowledge base to carry out the strategy Management based on real-time scene adaptive decision-making response to quickly generate emergency response plan and proactively push the security policy to the key equipment of the whole network.At the same time, the existing security hardware gateway can act as the execution unit of situation awareness through cloud detection and border defense, real-time Early warning and response to security incidents, to achieve the proactive detection of external threats Defense: the so-called synergy is the ability to integrate the information of each component in the active defense system, synergistic defense, the use of each defense point to maximize the value of the Xinhua three-state awareness system with the best value for collaboration through intelligent judgment, will be The active security defense system within the firewall, UTM, IPS, antivirus and other security components organically integrated, making the information security defense chain as a whole greatly enhance the security capabilities of intelligent evolution: in response to network threats and attacks, the Xinhua tri-state Perception system through machine learning and in-depth learning and training, intelligent analysis of security incidents and linkage response, the completion of the 'safe brain' closed-loop decision-making, the real threat to security threats to intelligent evolution.
Zhang Li, President of Xinhua 3 Group and President of Xinhua 3 Information Security Technology Co., Ltd, said: As a leading manufacturer in the domestic security field, Xinhua III has accumulated more than 10 years of successful experience in the field of network security. From the aspects of network security, cloud security, mobile IT security, big data security, industrial control security, and even trusted computing and IOT security, the introduction of the new security situational awareness system further improves the " Big security 'layout of the area, but also marks a comprehensive upgrade of Xinhua's three major security operations.'