A permanent store of known malicious domains against which all DNS traffic monitored by the system is verified.
This feature provides the analyst with an early indication of access to vulnerable sites which are known to host malware. The classifier will also fire for domain structures which do not meet certain quality criteria. i.e. length of domain question etc.
Databases of known malicious domains are a common feature in many security systems, however, some smaller Perception customers don’t have budget or capacity to invest in said systems. By building this feature into Perception, we are able to extend this protection to our small business customers that do not have advanced perimeter protection.
The Domain Name Policy Breach Classification technologies cross check all external traffic against a known database of malicious domains, and alerts the analyst to any communication with these domains.
This update is sensor based, and will be pushed to all managed customers at the pre-agreed upgrade time. Self-monitored customers can update their own sensors using the software upgrade process. If you have any further questions about this upgrade please contact us at firstname.lastname@example.org