Bivio Continuous Threat Monitoring Solution
The Bivio Continuous Threat Monitoring Solution represents the next generation of monitoring and cyber security network systems. Unlike existing monitoring systems that rely on a single mode of threat detection (such as pattern matching) the Bivio Continuous Threat Monitoring Solution is a multi-function, high-performance network monitoring probe designed to provide the best possible defense against known and unknown attacks, often grouped as “advanced persistent threats”.
Real-Time Situational Awareness
The Bivio Continuous Threat Monitoring Solution provides a robust risk management framework capable of proactively monitoring, detecting and, ultimately, stopping these threats before they inflict harm. The Bivio solution provides full real-time situational awareness to uniquely combat these difficult threats.
By aggregating multiple state-of-the-art monitoring engines in a single solution, the Bivio Continuous Threat Monitoring Solution provides significantly greater threat detection coverage than competing solutions, ensuring superior protection for customers. Designed to satisfy the U.S. federal government’s demanding cyber-security requirements, the solution tightly integrates the most up-to-date cyber security technologies -- ranging from pattern matching and flow generation to botnet detection - to offer unprecedented network awareness and in-depth forensics capabilities.
By leveraging Bivio’s leading deep packet inspection hardware technology, the solution provides these benefits at throughput speeds of 10 Gbps and beyond.
Unique Multi-Function Engine
The Bivio Continuous Threat Monitoring Solution combines world-class performance with an innovative multi-function engine that provides customers with complete flexibility to design a comprehensive solution that satisfies their unique requirements.
The multi-function engine supports a wide variety of cyber security applications, including such capabilities as pattern matching, flow generation, and botnet detection. Furthermore, these applications can easily be extended to meet future requirements. These extensions can be produced by multiple sources, including Bivio Networks, Bivio’s valued partners, and even the customer themselves. In totality, this powerful suite of applications is the most complete selection of cyber-monitoring services available on the market today.
Currently, the cyber monitoring services include:
- Protocol decoding
- Pattern matching
- Flow metadata
- ARP analysis
- OS fingerprinting
- Botnet detection
- Customized services
Unprecedented Layer 7 Awareness
The Bivio Continuous Threat Monitoring Solution includes a rich set of features designed to quickly identify and contain compromised network elements. Central to the solution is unprecedented layer 7 depth of awareness. This depth enables administrators to 'peel back' the outer layers of the packet and identify by content and protocol the information that is flowing through the network. This information in turn allows customers to identify compromised machines, discover suspicious outbound connections, and create the records necessary for future forensics analysis. All of these features are neatly presented through powerful analytical toolsets that help customers make sense of the generated data to quickly resolve real and potential vulnerabilities.