Threat Detection Analytics Test Methodology v.95 Request For Comments DRAFT

Threat Detection Analytics Test Methodology v.95 Request For Comments DRAFT

Threat detection analytics (TDA) products evolve the capabilities of traditional breach detection systems by applying advanced analysis algorithms in order to identify whether exfiltration has occurred, and if so, to determine root cause. This technology helps to accelerate the response workflow and improve incident outcomes. Incident responders are uniquely able to address attacks in progress and help organizations avoid grievous data loss or damage if they learn of incidents early enough in the attack chain. TDA products will evaluate and provide metrics on some of the challenges that have been reported by enterprises so incident resolution workflows can be accelerated.

As with all NSS Labs group tests, there was no fee for participation. All testing was conducted independently and was not paid for by any vendor.