Public sector

The current issue

Administrations, Health, Education and Universities face the following concerns :

  • external demand evolution : service to end-users increase in value and number, 'e-administration' services enable to declare and pay taxes, to make varied on-line declarations, to retrieve forms and documents, to obtain information, ... mainly use web technologies
  • internal demand evolution : web architectures, also called multi-tiers are very convenient to public sector : many remote and decentralized locations, flexibility to split 'IT tasks' : information presentation, storage, computation, communication
  • raw material is information which is usually confidential, sometimes critical -for instance medical details- and also requires integrity and access continuity
  • Health sector has to abide by high availability, confidentiality and integrity constraints as well as strict data access control. Another feature is information sharing and availability to varied actors : house doctor, specialists, hospitals, labs, social insurance, mutual companies, ...
  • Universities are usually very open(-minded) and controls are less strict although Research labs may store very confidential and high value information. Moreover, they may welcome IT students who like to 'experiment' techniques with associated risks
  • At last, Research Institutes enhance their value with exchange. But Researchers often under estimate importance and confidentiality of information they possess. They need to be protected very tightly

BinarySEC offers a perennial solution

  • BinarySEC equation is simple : potential attack = unexpected request = abnormal traffic. Consequently, BinarySEC modelizes normal traffic, then rejects abnormal traffic
  • Attacks often start with IP address and machine scan, then requests testing applications availability are sent, then targeted exploits. In all cases, traffic is abnormal so it is blocked an logged
  • BinarySEC installs directly on the web server and learns normal traffic for THIS specific application. So it refines its experience base for THIS specific server and it adapts its protection. This very close and dedicated shielding reduces false positives rate and increases efficiency. The experience base (ie learning achieved by the AI engine) of a Content Management Server - for instance using Joomla or SPIP - will differ from a data presentation server
  • Multi-server monitoring and statistics features enable to control tens of servers from a single web interface