Welcome!

News Feed Item

ADDING MULTIMEDIA OpenDNS Open Sources 3D Security Visualization Engine for Big Data

OpenDNS, a leading provider of cloud-delivered security, today announced that it has released OpenGraphiti, an interactive open source data visualization engine. OpenGraphiti enables security analysts, researchers and data scientists to pair visualization and Big Data to create 3D representations of threats. Much like virologists use known patterns of diseases to recognize a particular virus, OpenGraphiti can uncover sophisticated behaviors and relationships associated with cyber-attacks.

OpenDNS will demonstrate OpenGraphiti at Black Hat USA booth 964. In addition, OpenGraphiti’s creator, OpenDNS security researcher Thibault Reuille, and OpenDNS senior security research lead Andrew Hay, will present a session on the engine at Mandalay Bay tomorrow at 2:15PM PT in the Jasmine Ballroom.

CLICK TO TWEET: .@opendns releases open source data visualization engine for #infosec analysts, researchers and data scientists at #BHUSA http://bit.ly/WXuQMX

Seeing is Better than Reading

Research has proven that many people process information more efficiently when it is presented in visual rather than text form. According to one study, the human retina can transmit data at roughly the rate of an Ethernet connection. The OpenGraphiti engine enables 2D and 3D visualization of data by harnessing the computational power of both CPUs[1] and GPUs[2], a technique most commonly seen in the video game industry. The engine allows for the visualization of any data, however loosely related, in a medium that is easy to generate, navigate and articulate.

The OpenGraphiti engine and methodologies have been used by OpenDNS to analyze many threats including Cryptolocker and CryptoDefense ransomware, Red October malware, and the Kelihos botnet. It has even provided visualization to trace specific Syrian Electronic Army (SEA) campaigns.

Cryptolocker Use Case

Last year, OpenDNS used OpenGraphiti to detect the Cryptolocker ransomware and block it before it could affect customers. Cryptolocker casts a vast, yet predictable, DGA[3] “net” of domains which, when visualized, show an immediately identifiable interconnected pattern. Despite the fact the Cryptolocker DGAs changed and evolved, OpenGraphiti was able to visually trace their underlying replication scheme, identify future outbreaks and block them.

“We are open sourcing OpenGraphiti to lower the barrier to entry for those looking to visualize complex related data sets,” said Dan Hubbard, CTO of OpenDNS. “Combining intelligent data mining techniques with smart data visualization is the key to detecting and blocking complex attacks before they can cause damage.”

Availability

OpenGraphiti is available immediately from OpenDNS. Please visit www.opengraphiti.com for more information.

Resources

OpenGraphiti Overview: http://www.opengraphiti.com/

OpenGraphiti Screenshot: http://www.opengraphiti.com/gallery/cryptolocker-bfs4.png

OpenGraphiti Video: https://www.youtube.com/watch?v=TE9qsYBu8MM

Supporting Quotes

“OpenGraphiti projects complex data into a three-dimensional space, enabling the user to quickly and easily spot patterns and anomalies in their data.”

- Jay Jacobs, Co-Author of Data-Driven Security: Analysis, Visualization and Dashboards.

“It is hard to find tools that help visualize large datasets. OpenGraphiti scales quite well and its open architecture allows users to expand the engine with their own capabilities. We need more tools like this that help users gain deeper insight into their data.”

- Raffael Marty, CEO at Pixlcloud and author of Applied Security Visualization.

About OpenDNS

OpenDNS is a leading provider of network security and DNS services, enabling the world to connect to the Internet with confidence on any device, anywhere, anytime. The Umbrella cloud-delivered network security service blocks advanced attacks, as well as malware, botnets and phishing threats regardless of port, protocol or application. Its predictive intelligence uses machine learning to automate protection against emergent threats before they can reach customers. OpenDNS protects all devices globally without hardware to install or software to maintain. For more information, please visit: www.opendns.com.

[1] Central Processing Unit

[2] Graphical Processing Unit

[3] Domain Generation Algorithms are used by malware to periodically generate a large number of domain names that can be used as rendezvous points with their controllers.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
SYS-CON Events announced today that Linux Academy, the foremost online Linux and cloud training platform and community, will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Linux Academy was founded on the belief that providing high-quality, in-depth training should be available at an affordable price. Industry leaders in quality training, provided services, and student certification passes, its goal is to c...
SYS-CON Events announced today that CA Technologies has been named “Platinum Sponsor” of SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY, and the 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CA Technologies helps customers succeed in a future where every business – from apparel to energy – is being rewritten by software. From ...
Microservices are a very exciting architectural approach that many organizations are looking to as a way to accelerate innovation. Microservices promise to allow teams to move away from monolithic "ball of mud" systems, but the reality is that, in the vast majority of organizations, different projects and technologies will continue to be developed at different speeds. How to handle the dependencies between these disparate systems with different iteration cycles? Consider the "canoncial problem" ...
After more than five years of DevOps, definitions are evolving, boundaries are expanding, ‘unicorns’ are no longer rare, enterprises are on board, and pundits are moving on. Can we now look at an evolution of DevOps? Should we? Is the foundation of DevOps ‘done’, or is there still too much left to do? What is mature, and what is still missing? What does the next 5 years of DevOps look like? In this Power Panel at DevOps Summit, moderated by DevOps Summit Conference Chair Andi Mann, panelists l...
SYS-CON Events announced today that delaPlex will exhibit at SYS-CON's @CloudExpo, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. delaPlex pioneered Software Development as a Service (SDaaS), which provides scalable resources to build, test, and deploy software. It’s a fast and more reliable way to develop a new product or expand your in-house team.
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value. In his session at 20th Cloud Expo, Ed Featherston, director/senior enterprise architect at Collaborative Consulting, will discuss the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.
With the proliferation of both SQL and NoSQL databases, organizations can now target specific fit-for-purpose database tools for their different application needs regarding scalability, ease of use, ACID support, etc. Platform as a Service offerings make this even easier now, enabling developers to roll out their own database infrastructure in minutes with minimal management overhead. However, this same amount of flexibility also comes with the challenges of picking the right tool, on the right ...
910Telecom exhibited at the 19th International Cloud Expo, which took place at the Santa Clara Convention Center in Santa Clara, CA, in November 2016. Housed in the classic Denver Gas & Electric Building, 910 15th St., 910Telecom is a carrier-neutral telecom hotel located in the heart of Denver. Adjacent to CenturyLink, AT&T, and Denver Main, 910Telecom offers connectivity to all major carriers, Internet service providers, Internet backbones and exchanges.
Cognitive Computing is becoming the foundation for a new generation of solutions that have the potential to transform business. Unlike traditional approaches to building solutions, a cognitive computing approach allows the data to help determine the way applications are designed. This contrasts with conventional software development that begins with defining logic based on the current way a business operates. In her session at 18th Cloud Expo, Judith S. Hurwitz, President and CEO of Hurwitz & ...
Hardware virtualization and cloud computing allowed us to increase resource utilization and increase our flexibility to respond to business demand. Docker Containers are the next quantum leap - Are they?! Databases always represented an additional set of challenges unique to running workloads requiring a maximum of I/O, network, CPU resources combined with data locality.
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
Zerto exhibited at SYS-CON's 18th International Cloud Expo®, which took place at the Javits Center in New York City, NY, in June 2016. Zerto is committed to keeping enterprise and cloud IT running 24/7 by providing innovative, simple, reliable and scalable business continuity software solutions. Through the Zerto Cloud Continuity Platform™, organizations can seamlessly move and protect virtualized workloads between public, private and hybrid clouds. The company’s flagship product, Zerto Virtual...
Some people worry that OpenStack is more flash then substance; however, for many customers this could not be farther from the truth. No other technology equalizes the playing field between vendors while giving your internal teams better access than ever to infrastructure when they need it. In his session at 20th Cloud Expo, Chris Brown, a Solutions Marketing Manager at Nutanix, will talk through some real-world OpenStack deployments and look into the ways this can benefit customers of all sizes....
In recent years, containers have taken the world by storm. Companies of all sizes and industries have realized the massive benefits of containers, such as unprecedented mobility, higher hardware utilization, and increased flexibility and agility; however, many containers today are non-persistent. Containers without persistence miss out on many benefits, and in many cases simply pass the responsibility of persistence onto other infrastructure, adding additional complexity.
As businesses adopt functionalities in cloud computing, it’s imperative that IT operations consistently ensure cloud systems work correctly – all of the time, and to their best capabilities. In his session at @BigDataExpo, Bernd Harzog, CEO and founder of OpsDataStore, will present an industry answer to the common question, “Are you running IT operations as efficiently and as cost effectively as you need to?” He will expound on the industry issues he frequently came up against as an analyst, and...