Enterprise Immune System
Darktrace’s Enterprise Immune System’s flagship threat detection and defense capability are based on unsupervised machine learning and probabilistic mathematics. Powered by advanced machine learning, together with a new branch of Bayesian probability theory, Darktrace is the only self-learning cyber defense technology proven to work at scale. It is capable of detecting cyber-threats and anomalous behaviors that bypass traditional security tools, without prior knowledge of specific threats, or using rules or signatures.
Darktrace is a market leader that provides a strong example of leveraging artificial intelligence.
Darktrace works by creating unique behavioral models for every user and device across the enterprise and analysing the relationships between them. Leveraging its unique machine learning algorithms, Darktrace forms an evolving understanding of an organisation’s ‘pattern of life’ (or ‘self’), spotting very subtle changes in behaviors, as they occur. These behavioral changes are correlated and filtered in order to detect emerging threats and anomalies.
No rules or signatures
Like the human immune system, the Enterprise Immune System does not require previous experience of a threat or pattern of activity in order to understand that it is potentially threatening. It works automatically, without prior knowledge or signatures, detecting and fighting back against subtle, stealthy attacks inside the network — in real time.
Math and machine learning
Machine learning can be thought of as the third and most recent machine revolution. The first was the replacement of muscle by machine in the industrial revolution. The second involved computers taking over repetitive tasks that had originally been done by people. Machine learning represents computers being able to undertake complex, thoughtful tasks.
Real-time threat detection
Darktrace moves at the same speed as the threat, automatically learning from an organisation's ongoing activity in real time to detect threat behaviors as they emerge.
Industrial Control Systems & SCADA
Darktrace Industrial is ideally deployed to observe both the ICS and corporate networks, as most ICS compromises occur via an IT network breach.
Automatic threat response
When the human immune system is faced with a new threat, not only can it detect it, but it produces antibodies that bind to it and ultimately neutralise it. Darktrace Antigena replicates this function of the human immune system, by creating ‘digital antibodies’ in response to in-progress threats.
Self-learning defense in the cloud
Darktrace Cloud Connectors allow companies to easily extend Darktrace’s visibility and detection capabilities to cloud-based offerings. This allows anomalous behaviors to be detected, extending Darktrace’s Enterprise Immune System defense beyond the physical enterprise network and into cloud environments.