News

Constructing A Actually Unified Endpoint Knowledge Platform


There are a variety of endpoint safety options available on the market.  How do you choose and select which resolution is best for you?  The reply might depend upon which endpoints you need to shield. Home windows? MacOS? Linux? All the above?  What about containers and cloud infrastructure?

After we consider conventional endpoints, we instantly deal with conventional working methods.  Nevertheless, with the growth of cloud infrastructure and containers, the definition of an endpoint is increasing.  Deploying brokers to all of those endpoints could possibly be difficult or not even attainable, relying on the cloud platform.  So how are you going to construct a really unified endpoint knowledge platform?

Fb began to deal with this with the discharge of osquery, an working system instrumentation framework for Home windows, OS X (macOS), Linux, and FreeBSD.  With osquery, SQL tables symbolize summary ideas equivalent to working processes, loaded kernel modules, open community connections, browser plugins, {hardware} occasions or file hashes throughout all platforms, creating normalized safety telemetry.  This enabled organizations to simply ask questions of their endpoint fleet, equivalent to “Are there processes working and not using a binary on disk?”  “Are there major disks which are unencrypted?”  “What servers had a root login in final hour?”  Sadly, osquery didn’t prolong into a number of the new endpoints, like containers.  That’s the place Uptycs is available in…

Uptycs took the idea of osquery as a unified endpoint and took it to the following degree.  By leveraging the foundations of osquery and the idea of SQL-driven analytics, Uptycs constructed a really unified endpoint knowledge platform by:

  • Making a scalable SaaS providing to centralize administration of the osquery brokers
  • Incorporating different knowledge sources, together with containers, Kubernetes, and cloud suppliers equivalent to Amazon Internet Providers 
  • Making use of osquery safety telemetry to plenty of use instances, together with:
    • MITRE ATT&CK detection protection
    • vulnerability monitoring
    • file integrity monitoring
    • CIS Benchmark checks, and
    • compliance proof gathering (PCI, SOC 2, FedRAMP, and so on)

To know how Uptycs can remodel telemetry from endpoints, containers, cloud cases, and cloud suppliers to create a unified endpoint knowledge platform, watch the interview on Enterprise Safety Weekly right here or go to securityweekly.com/uptycs for extra info.



Source link

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Most Popular

To Top
error: Content is protected !!