At HP Protect, the company’s annual enterprise security user conference, HP has launched new solutions centered on security analytics. The new solutions are focused on protecting the interactions among users, applications and data to help protect enterprises’ most valuable assets.
To help organizations automate the analysis of threat data, HP is introducing HP DNS Malware Analytics (DMA), a solution designed to identify infected hosts by inspecting an enterprise’s DNS traffic. Developed in partnership with HP Labs, HP’s central research organization, and HP’s internal Cyber Defense Center, this clientless, algorithmic-driven service would uncover infected hosts without endpoint agents, helping customers to quickly detect high-risk threats, reduce data breach impact and enhance overall security posture.
Another security solution, HP DMA, would rapidly identify malware-infected hosts such as servers, desktops and mobile devices so that they can be contained before gaining a foothold in the network. The solution would use a one-of-a-kind, algorithmic engine – as opposed to the more common rules-based approach – to analyze the high volume of DNS records. This would enable the detection of new, unknown malware while simultaneously reducing false positives.
With simple set-up and cloud reporting, HP DMA would be a solution for rapid deployment to offer continuous threat vigilance. The solution would seamlessly integrate with the HP ArcSight SIEM platform, enabling customers to harness the power of SIEM and leverage their HP ArcSight Enterprise Security Management (ESM) deployments to correlate with other contextual data, issue alerts and signal appropriate remediation.
HP has also introduced HP Fortify scan analytics, a machine-learning technology that harnesses the power of an organization’s application security data to improve accuracy and efficiency of application security solutions. Processing an organization’s growing collection of historical application security scan results to reduce the number of issues that require an auditor’s review, the solution enables customers to focus resources on fewer, higher priority tasks.
This analytics technology launched by HP would integrate seamlessly into existing application security testing workflows, which helps to increase both the efficiency of the application security audit process and the relevancy of findings.