In late September 2016, Samsung began a recall of the Galaxy Note 7 after several devices exploded and caught fire, resulting in multiple hospitalisations. After an incident with a device catching on fire during an American Southwest Airlines flight in early October, an emergency ban was placed on the phone by all major airlines.
Such a ban was luckily instituted before any major incidents were caused by this device on aircraft. However, the two week period between the recall announcement and the ban illustrates the risks of adopting a purely reactionary approach to defence. Airline security will always be playing catchup to the latest wave of risks, never knowing what seemingly innocuous item will next catch fire.
Just like airport security, a purely reactionary defence is the current standard in cybersecurity. Known risks are collated and added to blacklists, which power Web Application Firewalls such as Imperva and CloudFlare. Such blacklists are out of date as soon as they are published. Constant innovation by hackers means that these approaches offer no defence against sophisticated zero day attacks. Timely intrusion detection is key to mitigating losses.
Spherical Defence offers an alternate approach. Instead of comparing incoming traffic to a generic blacklist, our software
By monitoring the communication between two or more systems running your application, Spherical Defence can infer the grammar that they use to communicate. This information means that Spherical Defence understands your use case as well as your developers do, and can provide tailored protection against the most sophisticated of attacks.