Cyber microscope enables advanced security anomaly detection

Lewis Rhodes Labs introduced the Cyber Microscope for faster and more accurate anomaly detection. The new product is based upon a Cyber Optimized Neuromorphic Processor that increases the speed and resolution of detection by more than 100 times. These processors are designed around an understanding of how the sensory cortex of the brain processes streams of data in parallel.

Cyber microscope

The device consists of a PCIe-compatible interface card, driver and PCRE compiler integrated into Suricata or other similar intrusion detection systems (IDS).

The LRL Cyber Microscope is deployed in Sandia National Laboratories’ cyber development environment, where it was benchmarked using Sandia production PCRE and public PCAP files against a deployed IDS. The LRL Cyber Microscope pervasively analyzed over 800 complex PCRE signatures at a 2+Gb/s rate, a greater than 100x performance gain.

“The improved speed and accuracy of the LRL Cyber Microscope should allow us to reduce the False Positive rate in our alert database, and we are collaboratively researching methods to use the temporal nature of the Neuromorphic processor to detect novel behavioral variants,” said John Zepper, Director of Systems Mission Engineering at Sandia National Laboratories.

IDS hardware and software sensors process a vast array of streaming data into alerts. However, due to the cost and complexity of existing technology, the vast majority of these alerts are false positives, forcing analysts to expend considerable resources to isolate the true positives that represent actionable threats.

“The process of extracting real threats from the typically high number of scanned anomalies is a never-ending challenge for security analysts using any intrusion detection system,” Sean Pike, Program Director, Next-Generation Data Security and eDiscovery & Information Governance at IDC. “Analysts need a cost-effective threat detection solution that provides them with the speed and accuracy to dramatically improve resolution and performance, and ultimately recognize real issues.”

The LRL Cyber Microscope is available immediately, pricing starts at $20,000.

RSA Conference 2016