OpenDNS, a leading provider of cloud-delivered security, today announced that it has opened its enforcement API to customers. This API would automatically turn the threat intelligence generated by customers’ own security and incident response teams into threat prevention, providing real-time protection for users and devices anywhere in the world.
“There is a very real industry pain point that enterprise customers face today. Unfortunately, security solutions don’t connect technically or work well together,” said Dan Hubbard, CTO of OpenDNS. “At OpenDNS, we felt it was important to take the lead on making security technology more interoperable and offering APIs as a key aspect of our platform. The value of threat intelligence does not come from mere information, but from the ability to programmatically translate that information into action. By enabling customers to combine curated threat intelligence with our global cloud-delivered network security platform through APIs, we believe that we will ultimately make all companies more secure.”
OpenDNS API integrations would offer a competitive advantage to customers by dramatically reducing the time between threat detection and prevention from hours to seconds. By monitoring new indicators of compromise (IOCs) generated by internal or third-party threat intelligence feeds, customers can use OpenDNS’s global platform to automatically prevent, not just detect, attacks against both on and off-network devices without any human intervention. Immediately blocking this activity would allow customers to quickly contain breaches and prevent malware or phishing from compromising their systems and users.
Enforcement APIs
The company also announced two new partnerships with threat intelligence platform providers, ThreatConnect and ThreatQuotient. Both companies have integrated into the Umbrella security service to combine OpenDNS’ global enforcement capabilities with platforms that allow customers to aggregate, analyze and prioritize their threat intelligence.
“ThreatConnect was built to be an open platform that ingests multiple types of intelligence, whether structured or unstructured, internal or external,” said Adam Vincent, CEO of ThreatConnect. “Securely integrating our platform with OpenDNS makes our customers safer and able to better analyze the multitude of threat data at their fingertips. By operationalizing their threat intelligence, our users take advantage of OpenDNS’s API and are better able to protect themselves from threat actors.”
OpenDNS enforcement APIs are available now for all Umbrella Platform customers. OpenDNS customers interested in ThreatConnect and ThreatQuotient integrations should contact an OpenDNS sales representative.
“Enterprises are looking for ways to help security teams streamline the lifecycle of threat intelligence and empower analysts to make more effective decisions,” said Wayne Chiang, CEO and co-founder of ThreatQuotient. “Integrating the ThreatQ platform with OpenDNS’s API allows customers to take advantage of their intelligence by making more informed deployment decisions based on supporting context and IOC scoring recommendations. This is a game-changer for many companies that do not have the resources to chase every IOC that makes it into a blacklist.”
