RISKS Securify's identity-aware solutions enable discovery and remediation of behavior violations. Securify verifies behavior by user identity against pre-built and customizable controls. Unauthorized Services Application awareness enables the detection of unauthorized services even if these are deployed using approved layer 4 ports, or are a deviation from approved services such as HTTP. Unauthorized Connections Topology awareness detects unauthorized paths and the bypass of security gateways even if communication between two end points is expected, such as alternative connections to the Internet. Tunneled Services Protocol decode, unlike flow analysis, detects the use of tunneling to bypass security measures, whether simply evasion of IT policies or actual misuse. Insecure Practices The use of encryption according to IT controls, as well as the specific quality of encryption, can be automatically verified. Misconfigurations Real-time monitoring of access to critical business systems from different sources quickly discovers potential misconfigurations in disparate security devices protecting the Internet perimeter as well as extranet connections. Inappropriate Access to Sensitive Data Prevent inappropriate access to business systems, and to specific data resources. Verify appropriate access with ability to correlate transactions back to user identities. Control authorized usage with thresholds on expected amounts of data transfers.   THREATS Securify's in-depth solution enables the detection of all the stages of a typical breach - from the precursor reconnaissance stage, through to the attack, then control and eventual abuse or theft of assets. Detection of attack vectors is broadened while maintaining accuracy, and issues can be proactively identified and response taken before any damage is done. Worm propagation Detect anomalies indicative of worm propagation patterns. Reconnaisance: Scans and Probes Detect both network scans, as well as service probes, both precursors to targeted attacks. Reconnaisance: Repeated login attempts Visibility of repetitive failed logins and excessive error codes can automatically alert on attempts to gain unauthorized access. Targeted Attack Detect unauthorized sources and users that gain access to critical business systems. Detect known exploits against critical business systems with signature inspection for threats relevant to the data center. Control of Compromised Assets Detect signs of compromised resource manipulation such as IRC control channels and the use of backdoor access. Abuse: Excessive Usage Even if credentials are compromised eg via social engineering, detect inappropriate usage - excessive logins, anomalous amount of traffic, or access from unexpected or disallowed locations such as a remote network. Abuse: Outbound & Tunneled Activity Detect and prevent attempts at abuse such as unexpected initiation of outbound connections, and stealthy tunneling of communications and data transfer.   Contact a solution expert