Intelligent and Adaptive Data Collection Infrastructure
This solution enables adaptive and intelligent collection of security information, as means of enabling predictive security analytics for infrastructures of the finance sector. It comprises different security monitoring probes over the cyber and physical security systems. The probes supported by the infrastructure include:
- Collection probes for “Packet-level data”
- Collection probes for “Flow-level data”
- Collection probes for “Connection-level data”
- Collection probes for “Host-level data”
- Collection probes for “Application-Level Data”
- Probes from the Skydive Real-Time Network Analyzer
The solution specifies an Actuation API and a Data Collection API, which enable the implementation of additional probes and of actuating functions.
The main innovation of the solution lies in its adaptive nature. Deployers of the security monitoring infrastructures can access richer information when needed (e.g., upon the detection of a security indicator). At the same time, the solution provides less information in its regular operation in order to economize on storage and bandwidth resources.