Technology
Axxera’s proprietary technology platform enables detailed processing
of every event on your network. Our processing model gives expert analysts
at Axxera’s Security Operations Centers the advanced tools they need
to provide real-time analysis and protection. Learn more about the features
of the technology platform:
Data Collection and Normalization
Axxera accesses your network through Virtual Private Network (VPN) connections. Firewalls, intrusion detection systems (IDSs), VPNs, and other security applications log information both locally (for redundancy) as well as over a secure connection to the Axxera SOC. Data is pushed into secure holding areas from your networks, and is then pulled into the SOC for secure processing. The data is then normalized across a distributed database architecture to achieve a holistic view of your entire network.
Axxera mines your normalized security data for suspicious activities, and network usage patterns. Trojan and malicious software packages can be identified, as well as vertical and horizontal service scans and brute force activity. Axxera also tracks the health and availability of monitored devices.
Malicious activities, including attacks involving multiple security devices, are correlated to other signs of abuse and presented to our analysts for real-time interpretation. Events can be linked by activity type, source, or destination, correlates suspicious outbound connections to reveal Trojan or other malicious software activity.
This unique feature
enables analysts to review security events in order of priority, ensuring
that the most severe events are processed within seconds of generation.
Security events are sorted based on several factors, including attack
or activity type, direction, destination, or source. Specific high-value
resources within an enterprise can also have adjusted metrics associated
for higher priority.
Only Axxera can analyze millions of security events to pinpoint the
real threats, in real-time.
A unique Analyst
Response Console provides Axxera analysts with macro overviews of detected
and correlated security events, with the ability to “drill down” to
the raw log data. Analysts can perform basic and advanced queries against
the consolidated log data. They can also filter false positives, and
set thresholds for malicious activity. Analysts rate security events
according to severity scale, with levels ranging from purely informational
notifications to full-scale breach emergencies.
Our unique analyst response console gives Axxera analysts a complete
normalized view of all security activity across your network.