Thales introduces its cyberattack detection probe, currently undergoing qualification by the National Cybersecurity Agency of France (ANSSI). A high-performance and modular solution, it can be deployed at critical points of the network, and allows for rapid identification and countering of known attacks. This new trusted probe meets all the obligations of the Military Programming Law, a compulsory requirement which all Critical National Infrastructure Providers (CNI) will have to comply with by 2019.
This law requires Critical National Infrastructure Providers to implement specific security measures, such as qualified probe-type detection systems, and to protect themselves against cyberattacks. The detection probes are placed on the network in such a way as to analyse all data streams exchanged between the CNI provider information system and external networks. These analyses are then used to find the malicious events and behaviour liable to affect the security of the system.
The trusted probe, designed and developed in France by Thales, meets these requirements. Already operational, it stands out for its reliability and its flexible usage. Customers can decide to incorporate it into their in-house events management system, or delegate management to a service provider such as Thales, within a global security supervision service.
The probe contains embedded behavioural algorithms able to detect abnormal events on the network. It also incorporates signatures or fingerprints of attacks, and can be provided with specific information on targeted threats in order to more quickly identify and counter known attacks.
The Thales teams have adopted a modular architecture to ensure the upgradability of the solution. New threats and changing regulations can therefore be taken into account in the long term. Available for different network speeds, for effective budget optimisation and without affecting the detection accuracy, Thales’s solution adapts to the requirements of its customers.
Thales’s detection probe is an innovative solution in the domain of cybersecurity for Critical national Infrastructure Providers. The Group provides support to the country’s strategic organisations through its trusted solution, effective against even the worst cyberattacks, and adapted to their operational requirements.
According to Guillaume Poupard, Director General of the National Cybersecurity Agency of France, “the development of high-performance and trusted detection capabilities, able to integrate sensitive signatures provided in particular by the ANSSI, is essential in order to provide a high level of security for the critical information systems of Critical National Infrastructure Providers”.