New network traffic analysis tools focus on security

It’s a simple truth: better network visibility leads to better network security. The more you know about what is happening on your network, the better prepared you will be to prevent, detect and thwart attacks.

Network traffic analysis techniques have long been used by IT professionals to tune corporate network performance and optimize network bandwidth usage. But a new class of network traffic analysis tools, using machine learning and other advanced technologies, are increasingly being used to analyze network packet data to determine what “normal” behavior should look like. ” of network traffic and, therefore, to identify potentially malicious elements. network traffic.

Enterprise network traffic analysis offers defenders an ever-expanding source of data, some legitimate, some malicious, that can be mined to gather information about how the network should be used – and how to identify when the network is being abused.

Analyzing network data traffic can allow defenders to more accurately identify malicious packets almost as quickly as attackers can send them. Scanning can also mitigate threats faster while isolating network segments that are under attack to prevent the attack from spreading.

Like so many new developments in information security, using network data traffic analysis to improve security is not a panacea and cannot replace the use of a broad-spectrum approach. depth of security, but it offers companies another important strategy in their cybersecurity defenses. In this handbook, network and security specialists provide actionable information for understanding and evaluating the benefits that network traffic analysis can bring to data security.

Charles J. Kaplan