Eric Fries, President of Allentis: From cybersecurity to knowledge of application and network flows
On the occasion of the 2023 edition of the FIC, Allentis will present all its new products with in particular its NDR threat detection system, Qe-Securequalified as elementary by ANSSI, its offer Qe-Streams / Qe-Flows operational metrology, owaTAPICS of diodes and windows, as well as its TAPICS range of TAP boxes. Eric Fries, President of Allentis presents his strategy.
Global Security Mag: What will be your news at the International Cybersecurity Forum 2023?
Eric Fries : Allentis will present new features on each of our product lines for cybersecurity and knowledge of application and network flows.
Our NDR threat detection system, Qe-Secure, qualified as elementary by ANSSI, provides a new functionality for profiling security events allowing optimized filtering processing. And the AI Mind module integrated into Qe-Secure has evolved to handle new attack scenarios. We also worked on optimizing user workflows, a crucial subject for analysts working in SOCs.
Our offer Qe-Streams / Qe-Flows operational metrology benefited from major changes in 2022. NPM and performance analysis systems are becoming an indispensable complement to IDS and NDR tools. Version 2.5 of Qe-Streams offers extended processing of business or protocol events in the form of event files, with the possibility of generating incident tickets to tools such as Service Now. We are also focusing on the monitoring of SD-WAN infrastructures for which we provide an agnostic and centralized solution without agents.
Our range owaTAPICS of diodes and counters, as well as our TAPICS range of TAP boxes qualified as elementary by ANSSI and our aggregators benefit from developments in the supported speeds and in the hardening of the products.
Global Security Mag: What are the strong points of the solutions that you are going to present on this occasion?
Eric Fries: On the Qe-Secure range, we offer, beyond detection capabilities, unique visualization, filtering and contextualization facilities, which addresses the priority of SOC teams always looking for time savings and efficiency in the treatment of events.
Our one-stop diode owaTAPICS system offers high-speed data transfer support, which is a growing demand from our customers who are often limited by their legacy tools. We allow them to reach the 10 Gbps level with full protocol support. We also offer the possibility of including security functions in the counters.
Our Qe-Streams / Qe-Flows operational metrology systems are agentless. Remote agent support is very complex for large organizations. And we offer the best technical and economic compromise for analyzing the integrity and performance of application and network flows. We now support 100 Gbps analysis with full application weather for both east-west and north-south streams.
Global Security Mag: This year the theme of the FIC will be Cloud Computing, what are the main cyber threats to the Cloud?
Eric Fries: It all depends on what you place in the cloud. If you place your applications with a hosting provider like Amazon, our monitoring tools can support these applications, which will be subject to the same attacks as in an internal datacenter. Of course, this changes a lot of things compared to the exploitation of internal applications, because the service provider is also supposed to ensure a level of security for the servers that carry you. On the other hand, if SaaS applications are used, all aspects of operation and security around these applications are ignored, and the service provider is responsible for assuming them.
But for large organizations that are moving more and more towards “multi-cloud” the security problem remains as it is generally accompanied by the implementation of an SD-WAN network architecture which requires close protection. , with many remote and distributed sites, all attackable from the Internet.
Global Security Mag: What are the advantages of Cloud Computing?
Eric Fries: It’s an economic advantage on the one hand, and access to a flexible resource on the other.
Global Security Mag: How should technologies evolve to counter these threats?
Eric Fries: In Saas, there is no subject as long as we agree to get rid of it completely with the cloud service. For application hosting it is a delicate subject because in fact the cards are not only in the hands of software publishers but mainly in those of the main cloud providers, especially Amazon and Azure. For now, they are charging a high price for setting up certain data analysis solutions around hosted applications.
Global Security Mag: In your opinion, what place can humans have to reinforce the defense strategy to be deployed?
Eric Fries: No change has been observed on this point: this place is obviously central. Human safety comes before tools.
Global Security Mag: What message would you like to convey to CISOs?
Eric Fries: Drop by Allentis on stand D15 at FIC 2023. You will discover:
– With Qe-Secure the most ergonomic threat detection NDR solution on the market, available for OIVs in SOC PDIS, OSEs, or conventional SOCs.
– With Qe-Streams and Qe-Flows the most flexible and easy to deploy operational metrology platform.
– With owaTAPICS the diode-counter solution that will allow you to increase throughput or support complex protocol or security architectures.
– With TAPICS, the range of elementary or standard qualified TAPs boxes for your OIV, OSE or classic organization needs.
To know more :
Commercial : [email protected]
[email protected]
Site web : https://www.allentis.eu/