http://www.theregister.co.uk/2013/08/21/intel_bakes_supersnooper_to_stop_industrial_espionage/
By Simon Sharwood
The Register
21st August 2013
Intel has created a Hadoop-based rig that analyses just about every
network event in the company – four to six billion of them on business
days - in close to real time so it can spot threats including industrial
espionage.
Intel officials declined to name the tool, saying it would not be
"productive" to disclose its name, but said it was created by an 80-strong
team of big data specialists working from its Israel offices and makes
extensive use of Apache Hadoop. Ron Kasabian, Chipzilla's general manager
of Big Data, said the tool was developed because conventional malware
detection tools – even those from Intel's security-focussed subsidiary
McAfee – can't find the especially novel or subtle attacks Intel fears.
Kasabian described the tool as analysing “every access request by every
employee, every time they access a file, sharepoint, email or ERP”.
Watching all those activities is important because Intel's intellectual
property like product designs and manufacturing processes must be very
closely guarded.
Moty Fania, Chipzilla's principal engineer for big data analytics and a
member of the team that built the tool, told The Reg the software collects
data from many devices around Intel's global networks, aggregates them and
then analyses the results in close to real time.
[...]
--
Find the best InfoSec talent without breaking your
recruiting budget! Post a Job, $99 for 31 days.
Hot InfoSec Jobs - http://www.hotinfosecjobs.com/
