Success Stories

Partner requirement

Our partner, a large nationwide Internet service provider (ISP) became aware that non-registered ISP’s were illegally running data on its infrastructure. In order to address this issue, Desoma was tasked to monitor and analyze the IP traffic on the backbone and report all non-authorized traffic. All non-registered ISP’s were then approached and asked to register for the different services they were providing, including mobile, WLAN, complete network usage, as well as application-only services such as Webmail, Video on demand etc. In addition, our partner also wanted to be able to block all the traffic on its network that is prohibited according to the regulations of the national telecommunications regulatory authority or in breach of national law, e.g. child pornography, etc.

Solution

In order for Desoma to meet our partner’s request, we had to create a high performance real-time IP traffic environment able to comply with the legal framework of the country. Since our patented CORE technology Daisy is linearly scalable, this was successfully achieved. Moreover, our unique feature was the ability to establish the new environment and associated reporting structures in a way that could be easily learned, implemented and adapted to changing circumstances and requirements by our partner’s staff and experts upon the completion of the project.

Partner requirement

The European Union’s new General Data Protection Regulation or GDPR will come into force on 25 May 2018. It stipulates that everybody has the right to know what data is being collected about him/her. At the same time, the company, organization or individual that handles the data will have to be able to inform the persons whose data is being collected and stored to what end this data is being used and by whom. Moreover, everyone has the right to ‘be forgotten’, i.e. personal data will have to be deleted upon request. If a company cannot ensure that it will be able to delete personal data (storage location), or does not know where such data is stored and what it is being used for, or even when it experiences a security breach, it can face fines of up to €10 million for smaller offences or even up to €20 million for greater offences. Is your organization prepared for GDPR?

Solution

With our Daisy system you can gain complete knowledge of, and control over your data, i.e. what data you have, where it is stored, and all data flows coming in and leaving your organization. Daisy puts you in charge.

Partner requirement

Today, organizations’ security policies are generally based on the assumption that employees have to be trained in how to detect malware, phishing emails and other security risks, and how to deal with them. We were approached by our partners with the requirement to find a solution to free their employees from the burden of having to worry every time they open an email attachment while at the same time enhancing our partner’s overall security posture. At Desoma we believe that a smart corporate network should be able to handle all the above security tasks autonomously and automatically and that employees should be able to focus exclusively on their actual roles and responsibilities, so our partner’s requirement was a good match for us.

Solution

Together with our partner we decided to implement Daisy as a network forensics and intrusion detection solution, which would not only enable our partner to continually monitor its entire corporate network in real-time, but also for Daisy to take predefined responsive actions to mitigate any threats. By establishing an initial set of rules, we started to learn what constitutes ‘normal’ traffic behavior in the context of our partner’s network, and fine-tuned the system accordingly in order to minimize false positives and negatives. Over time, together with our partner we were able to eliminate all malicious attacks on its network and protect its corporate know-how and information. The initial investment required by our partner to purchase and implement Daisy was easily recovered by being able to make substantial savings on employee training as well as on alternative IT infrastructure and its administration. As an added benefit, our partner’s IT department was able to identify, using Daisy’s network activity reports, which servers or network infrastructure were no longer used and could be taken offline – significantly reducing its IT administration budget.

Partner requirement

A government organization approached Desoma as it needed to identify hostile actors and gain intelligence on their modus operandi in order to neutralize the immediate threat posed by them and prevent future attacks. The actors’ communications took place in heavy-traffic networks with a consolidated bandwidth of 1Tb/s at peak use.

Solution

Desoma implemented Daisy as it can cope with the large traffic volumes that required monitoring by our partner. Data flows were fed into the Daisy platform to allow security analysts to identify patterns in the communications of the hostile actors and create a profile of their malicious activity. Based on the acquired intelligence, the immediate threat posed by the actors in question could be neutralized, and new or emerging threats can now be more effectively and swiftly identified.

Partner requirement

Drug and human traffickers tend to use the most sophisticated communication technologies to avoid identification and protect their operations. A national security organization in charge of investigations required the identification and monitoring of the traffickers’ communications in order to obtain intelligence on their possible physical locations. The analysis had to be performed on satellite network flows involving vast amounts of traffic.

Solution

The national security organization provided satellite communication feeds, which Daisy processed and analyzed to identify the traffickers and locate their geographical whereabouts.