Netography, which turns any network asset into a security device using a cloud-native Distributed Intrusion Prevention System (IPS), launched an open beta of its first service. Named Distributed IPS, the service is the next step in the evolution from IDS (Intrusion Detection System) to IPS.
By moving to cloud-native infrastructure with distributed telemetry gathering, Distributed IPS enables network and security professionals to discover, investigate, and remedy the modern threat environment with speed and autonomy.
“We have unlocked a technology that will enable security to flourish and grow beyond what has been available to this point. The traditional network perimeter has disappeared; assets are now scattered across multiple vendors in different environments,” said Barrett Lyon, co-founder and CEO of Netography.
“Early generations of IDS and IPS technology ran into scalability issues as networks grew larger and rules became overly complex. Even more advanced flow-monitoring technologies were too limited, as they only monitored and alerted organizations to issues.
“By assessing threats in the cloud, we can detect, route, or block bad traffic at a scale and ease never before possible.”
Netography’s Distributed IPS continuously and automatically detects and remediates malicious traffic, including DDoS attacks, botnets, data extraction, login attempts, and more. It works by ingesting all common flow data, including Sflow, Netflow, and VPC flow, via a proprietary cloud flow collector.
Each flow is then enriched with a deep level of security, business, and performance detail that can be stored in perpetuity, as well as monitored by a host of proprietary algorithms. Algorithms are used to trigger comprehensive business logic (plugins) that can do anything from re-route networks to defend your global infrastructure.
Netography can discover extremely complex security events that typically go unseen. This is in contrast to traditional, on-premises IPS or flow collection devices that use hardware that lacks the unlimited storage and compute capacity of cloud services.
Distributed IPS is also complementary to existing security deployments, and by leveraging the Netography Fusion Portal, it enables teams to better control devices and work together to reduce threats.
“Many organizations have been forced to create their own tooling to coordinate block lists, threat detection, and flow together,” said Dan Murphy, co-founder and CTO of Netography.
“A lot of these tools have been hacked together by teams that no longer exist, and as a result, nobody wants to touch or update them for fear of breaking something. Our Distributed IPS will reduce the overhead of developing and supporting custom controls for networks, and deliver powerful integrations to make investments in existing security tools more valuable.”