Curtail ReCover
Detect and Isolate Attacks-Even Zero-Day-Without Impacting Operations
Curtail ReCover proactively detects anomalies—including zero-day attacks—and automatically diverts traffic to clean, resilient systems to quickly, safely and reliably maintain business operations at all times. Think of ReCover implementations as RAID for applications.
Today
Detection of Unknown Attacks Difficult and Noisy
Actions are Limited (Block or Allow?)
False Positives on Detection
Interruption of Business if Attack is Successful
Curtail's Approach
Detect Zero-Day Attacks
Isolate Attacker and Observe While Permitting Non-attack Traffic
Minimal or No False Positives
Business Continues Uninterrupted on a System Not Susceptible to the Attack
Security and availability are better together
Intrusion
Detection
Provides intrusion detection without interrupting operations
Attack
Detection
Detects zero-day attacks with patented comparion technology
Isolate
Attacks
Isolates attacks while enabling operations to continue on clean servers
How ReCover Works
Redundancy Is No Guarantee of Continuity When Your Backup Systems Have Been Corrupted
Modern systems need proactive monitoring and resilience—not just redundancy. ReCover detects anomalies—including zero-day attacks—by comparing network responses across servers. In an alarm, affected systems are isolated and traffic is switched to clean, resilient servers. With traditional intrusion detection solutions, administrators bring their own systems down on false positives just to make sure they’re ok. But that defeats the point. By switching traffic to a resilient, clean system with an independent attack surface, ReCover keeps operations going even in the face of threats. False positives don’t matter.
RAINS is RAID for Applications
Think of a ReCover implementation as RAID for applications
RAID (Redundant Array of Independent Disks) is a model where multiple disks are presented to a computing system as if they were a single disk. This behavior is provided by the RAID controller which communicates with each independent disk and acts to the rest of the system as if it is a single disk. Because disk failures are physical hardware the probability of each disk failing is independent .
What RAID does for hardware; RAINS does for applications
RAINS (Resilient Array of Independent Network Services) is a model where multiple network services are presented over a computer network as if they were a single network service. This behavior is provided by ReGrade/ReCover which communicates with each independent network service and acts to the rest of the network as if it is a single network service. Because network service failures are typically caused by software faults the probability of each network service failing is independent to the extent that the software itself is independent. This can detect open source software flaws by detecting differences in behavior that result from triggering flaws in one open source offering. This can also detect regressions in software by detecting the behavioral differences introduced in a new software version compared to a previous version of the same software.
Request a Demo of ReCover
Fields marked with an asterisk (*) are required.