Download PDF version Contact company

ExtraHop, global provider of analytics for security, is upending the SOC status quo at the Black Hat USA 2018 Conference. The company will be showcasing its Reveal(x) network traffic analytics (NTA) solution at Booth 1004, demonstrating how real-time analytics and machine learning eliminate the dark space within the enterprise. ExtraHop has received industry recognition from Gartner, EMA, and Ovum as these and other major industry organisations recognise the need for NTA at enterprise scale.

Black Hat USA 2018

The ExtraHop booth at Black Hat USA will feature a series of industry thought leadership presentations from Phantom, Ixia, and others speaking on the rapidly emerging role of NTA in the enterprise SOC, the importance of TLS 1.3 decryption for security visibility, and the power of orchestration automation. Special sessions will occur throughout the day at Booth 1004 on August 8 and 9, 2018.

"Security teams are drowning in alerts and many are left without the resources they need to stay ahead of attackers," said Bryce Hein, SVP of Marketing at ExtraHop. "Threat hunting in the modern attack landscape is not possible without enterprise-class network traffic analytics, making NTA a must-have for the modern enterprise SOC."

Reveal(x) network traffic analytics ExtraHop Reveal(x) significantly reduces dwell time by highlighting late-stage attack activities and shining light on the darkspace in the enterprise

ExtraHop Reveal(x) significantly reduces dwell time by highlighting late-stage attack activities and shining light on the darkspace in the enterprise—the hard-to-see areas of the network along the east-west corridor. Through comprehensive analysis of network traffic, Reveal(x) automatically identifies attack behavior, delivering high-fidelity insights into threats to critical assets. By merging insights into investigative workflows, Reveal(x) helps security operations teams shrink detection and response times, disrupt threat activity, and identify ways to reduce the attack surface.

Analyst Recognition

ExtraHop was listed as a Sample Vendor in the Gartner "Hype Cycle for Threat-Facing Technologies, 2018" report. ExtraHop was named in the Network Traffic Analysis (NTA) category. According to the Gartner report, "NTA solutions are valuable tools that assist network security professionals in the detection of compromised endpoints and targeted attacks that have not been seen in the past. These tools have limited blocking ability, or none at all (because they are implemented outside of the line of traffic), but they are effective in shortening the incident response window and reducing the dwell time of malware."

The recent analyst report from EMA titled: Radar Report for Network-Based Security Analytics: Q3 2018 identified ExtraHop Reveal(x) as a ‘Value Leader’ and ‘Vendor to Watch,’ noting that, ‘Reveal(x) exhibited strong functionality due to its impressive feature differentiation, out-of-box reporting, and high-performance sustained data capture and processing.’

Leading European analyst group Ovum touted Reveal(x) in a recent report stated, “It analyzes all network interactions, applying machine learning to detect abnormal behavior, and then automates basic functions to streamline threat investigations. The launch of Reveal(x) takes ExtraHop into the network detection and response (NDR) market.

Customers Choose Reveal(x) Global 2000 customers are already using ExtraHop Network Traffic Analytics to modernise their programs and protect their enterprises

Global 2000 customers are already using ExtraHop Network Traffic Analytics to modernise their programs and protect their enterprises. A top provider of life insurance in the United States is using Reveal(x) as the cornerstone of their next-generation SOC, while other ExtraHop customers report improving their security visibility by as much as 75 percent and reducing time to detect threats by as much as 95 percent.

Industry Accolades

Reveal(x) has also won numerous cybersecurity industry awards in the last six months including the AI Breakthrough Award for Best AI Solution for CyberSecurity, 2018 Fortress Cyber Security, Best of Citrix Synergy 2018, and was named to the 2018 JMP Securities Super 70 List.

Download PDF version Download PDF version

In case you missed it

How should the security industry promote diversity?
How should the security industry promote diversity?

Diversity in a company’s workforce is arguably more important now than ever. Societal awareness of the importance of diversity has grown, and many people see diversity as an important factor that reflects positively (or negatively) on a company’s culture and image in the marketplace. We asked this week’s Expert Panel Roundtable: What should the security industry do to promote workplace diversity?

Why face recognition as a credential is the ideal choice for access control?
Why face recognition as a credential is the ideal choice for access control?

In the field of access control, face recognition has come a long way. Once considered too slow to authenticate people's identities and credentials in high traffic conditions, face recognition technology has evolved to become one of the quickest, most effective access control identity authentication solutions across all industries. Advancements in artificial intelligence and advanced neural network (ANN) technology from industry leaders like Intel have improved the accuracy and efficiency of face recognition. However, another reason the technology is gaining traction is due to the swiftly rising demand for touchless access control solutions that can help mitigate the spread of disease in public spaces. Effective for high volumes Face recognition eliminates security risks and is also virtually impossible to counterfeit Modern face recognition technology meets all the criteria for becoming the go-to solution for frictionless access control. It provides an accurate, non-invasive means of authenticating people's identities in high-traffic areas, including multi-tenant office buildings, industrial sites, and factories where multiple shifts per day are common. Typical electronic access control systems rely on people providing physical credentials, such as proximity cards, key fobs, or Bluetooth-enabled mobile phones, all of which can be misplaced, lost, or stolen. Face recognition eliminates these security risks and is also virtually impossible to counterfeit. Affordable biometric option Although there are other biometric tools available, face recognition offers significant advantages. Some technologies use hand geometry or iris scans, for example, but these options are generally slower and more expensive. This makes face recognition a natural application for day-to-day access control activities, including chronicling time and attendance for large workforces at construction sites, warehouses, and agricultural and mining operations. In addition to verifying personal credentials, face recognition can also identify whether an individual is wearing a facial covering in compliance with government or corporate mandates regarding health safety protocols. Beyond securing physical locations, face recognition can also be used to manage access to computers, as well as specialised equipment and devices. Overcoming challenges with AI So how did face recognition become so reliable when the technology was once dogged by many challenges, including difficulties with camera angles, certain types of facial expressions, and diverse lighting conditions? Thanks to the emergence of so-called "convolutional" neural network-based algorithms, engineers have been able to overcome these roadblocks. SecurOS FaceX face recognition solution FaceX is powered by neural networks and machine learning which makes it capable of authenticating a wide range of faces One joint effort between New Jersey-based Intelligent Security Systems (ISS) and tech giant Intel has created the SecurOS FaceX face recognition solution. FaceX is powered by neural networks and machine learning which makes it capable of authenticating a wide range of faces and facial expressions, including those captured under changing light, at different resolution levels, and varying distances from the video camera. Secure video management system A common face recognition system deployment begins with IP video cameras that feed footage into a secure video management system connected to a video archive. When the software initially enrolls a person’s face, it creates a "digital descriptor" that is stored as a numeric code that will forever be associated with one identity. The system encrypts and stores these numeric codes in a SQL database. For the sake of convenience and cost savings, the video server CPU performs all neural network processes without requiring any special GPU cards. Unique digital identifiers The next step involves correlating faces captured in a video recording with their unique digital descriptors on file. The system can compare newly captured images against large databases of known individuals or faces captured from video streams. Face recognition technology can provide multi-factor authentication, searching watchlists for specific types of features, such as age, hair colour, gender, ethnicity, facial hair, glasses, headwear, and other identifying characteristics including bald spots. Robust encryption SED-compatible drives rely on dedicated chips that encrypt data with AES-128 or AES-256 To support privacy concerns, the entire system features an encrypted and secure login process that prevents unauthorized access to both the database and the archive. An additional layer of encryption is available through the use of Self-Encrypting Drives (SEDs) that hold video recordings and metadata. SED-compatible drives rely on dedicated chips that encrypt data with AES-128 or AES-256 (short for Advanced Encryption Standard). Anti-spoofing safeguards How do face recognition systems handle people who try to trick the system by wearing a costume mask or holding up a picture to hide their faces? FaceX from ISS, for example, includes anti-spoofing capabilities that essentially check for the "liveliness" of a given face. The algorithm can easily flag the flat, two-dimensional nature of a face mask, printed photo, or image on a mobile phone and issue a "spoof" alarm. Increased speed of entry Incorporating facial recognition into existing access control systems is straightforward and cost-effective Incorporating facial recognition into existing access control systems is straightforward and cost-effective. Systems can operate with off-the-shelf security cameras and computers. Users can also leverage existing infrastructure to maintain building aesthetics. A face recognition system can complete the process of detection and recognition in an instant, opening a door or turnstile in less than 500ms. Such efficiency can eliminate hours associated with security personnel checking and managing credentials manually. A vital tool Modern face recognition solutions are infinitely scalable to accommodate global enterprises. As a result, face recognition as a credential is increasingly being implemented for a wide range of applications that transcend traditional access control and physical security to include health safety and workforce management. All these capabilities make face recognition a natural, frictionless solution for managing access control, both in terms of performance and cost.

What are the challenges and benefits of mobile access control?
What are the challenges and benefits of mobile access control?

There is a broad appeal to the idea of using a smartphone or wearable device as a credential for physical access control systems. Smartphones already perform a range of tasks that extend beyond making a phone call. Shouldn’t opening the door at a workplace be among them? It’s a simple idea, but there are obstacles for the industry to get there from here. We asked this week’s Expert Panel Roundtable: What are the challenges and benefits of mobile access control solutions?