The CounterTack Sentinel product applies Deep System Inspection technology to monitoring production systems. Sentinel is based on a new agent implementation of Deep System Inspection and new Stateful Compromise Indicator (SCI) technology. Together, they enable detection of previously undetectable attacks on production systems.
"It turns out that when we studied advanced attacks at a low enough level in the operating system layer, there was quite a bit of commonality in the behaviors," said Sean Bodmer, Chief Researcher in the CounterTack Cyber Counterintelligence Lab. "We turn the attack intelligence from our analyses into SCIs, which retain all the state change information in the attack storylines, to detect these attacks with very high fidelity."
CT Sentinel will be available for sale later this year. It is being deployed in a joint development program with select CounterTack design partners that will begin March 2013. The design partners represent a range of large-enterprise industry segments and are market leaders in cyber security incident response and operations. Given the large number of targeted attacks aimed at their companies, a major benefit of the program will be the creation of SCIs for the latest sophisticated custom attacks.
"We're very pleased that we have been able to attract some of the best and brightest cyber security practitioners in the industry," said Neal Creighton, CounterTack CEO. "We know our design partners are very busy confronting ever-increasing attack volumes, so we appreciate their commitment to work with us on advancing the state of the art in cyber defense."
CT Sentinel is being demonstrated at the RSA Conference this week at CounterTack's booth #2533.
CounterTack, the industry's first and only in-progress attack intelligence and response solution provider, was born out of the critical need to develop new security approaches for enterprise and government organizations. The detection gap persists despite massive investments and continuing advancements in security technologies, with cyber attacker innovations outpacing cyber defenses. CounterTack is leading the way on new approaches for deeper security intelligence monitoring and faster attack response.