Lacework, Inc. a Mountain View, California-based Cloud Security provider has recently unveiled a Zero Touch solution named ‘Polygraph’ which helps in providing a graphical interface for breach detection and threat management on Public, Private and Hybrid Cloud Networks. Thus, Polygraph helps IT managers, CIOs and CTOs in detecting a breach in time and helps in addressing the flaws on a quick note.
Technically speaking, Polygraph creates a zero touch solution capable of detecting cloud breaches in three steps- creation of temporal baseline, analysis grouping and monitoring.
First, Polygraph creates a temporal baseline by using big data analytics and machine learning. The system then starts analyzing communication patterns, relationships between entities and user behaviors to create a baseline.
Then in the second phase, Polygraph starts capturing data and correlates and organizes users, workloads, and processes within the cloud network.
Based on certain characteristics and communication patterns, Polygraph then automatically groups cloud entities by analyzing groups to simplify visualization of cloud operations and reduction of redundant alerts.
As soon as a formulated baseline which can be customized is established, all current operations are compared to the baseline. This will alert IT staff on an immediate note as soon as a security breach gets detected.
Lacework’s Polygraph is also capable of detecting misconfigured or unpatched entities and can help identify the intruder or the mischief creator before time.
Hence, Polygraph helps IT staff alert any abnormal activity with the help of comprehensive baseline to detect normal operations. As the entire system works on cloud virtual machines, no kernel modifications are needed.
The polygraph is currently available through the Lacework website and in AWS Marketplace for Amazon Cloud Service users. In near future, Lacework is also planning to extend its new cloud security services to Microsoft Azure.
