AI-based network protection system blocks viruses, malware

October 09, 2017 // By Jean-Pierre Joosting
Rohde & Schwarz Cybersecurity and Saint Security, a leading vendor of network protection systems, have released cybersecurity technology that leverages artificial intelligence, machine learning and big data-based profiling methodologies to fight advanced persistent threats (APTs).

Saint Security uses PACE 2 deep packet inspection (DPI) software from Rohde & Schwarz Cybersecurity in its network-based advanced malware response system, MNX, to identify, analyze, judge and block malicious activity. By embedding the DPI engine, they unlock the full potential of artificial intelligence-based (AI) analysis methodologies to fingerprint sophisticated cyber-attacks.

The system identifies and blocks various types of malware that cannot be detected by off-the-shelf security. PACE 2 serves as the key enabling feature by extracting file content and metadata to identify potentially dangerous executables caused by APTs. 

“The ability of extracting file content extended the functionality of the network-based advanced malware response solution MNX to analyze all network traffic, services and protocols across all ports with an extremely fine granularity,” says Kihong KIM, CEO of Saint Security. “The extracted information is key to better identify and investigate multi-stage, advanced persistent threats such as malicious emails or ransomware,” adds KIM.

Saint Security’s network protection system intercepts possible APTs at any point in a network. In order to fingerprint malicious activity and to unlock the full potential of their AI-based analysis methodologies, they decided to embed the PACE 2 DPI engine from Rohde & Schwarz Cybersecurity to get a deep understanding of the observed network traffic.