FortiAI: Virtual Security AnalystTM Overview
There is no question that cyberattacks and threats—ransomware, trojans, cryptomining, worms, etc.—are here to stay, but they are also becoming increasingly sophisticated and dangerous. Cybercriminals are eagerly adopting new innovations such as artificial intelligence (AI) and automation via AI fuzzing, self-learning swarm-based attacks, and expanded Malware-as-a-Service capabilities. Meanwhile, overburdened security operations teams are stuck with traditional security resources and investigation procedures to combat the increasing volume of advanced polymorphic, known, and unknown threats.
AI is paving the future for cybersecurity solutions that can stay ahead of evolving threats. Fortinet FortiAI, powered by Deep Neural Networks (DNN), is the industry’s most sophisticated AI security solution. FortiAI is specifically designed to alleviate the tedious manual threat investigation of security alerts by identifying and classifying threats and malware outbreaks in sub-seconds.
FortiAI: Virtual Security AnalystTM News
Feb 24, 2020Fortinet Introduces Self-Learning Artificial Intelligence Appliance for Sub-Second Threat DetectionFortinet Press Release: Fortinet continues to lead with AI innovation around its security offerings.
Feb 24, 2020FortiAI: Virtual Security Analyst Revolutionizes Threat Protection for SecOpsFortinet reveals FortiAI, the most sophisticated on-premise AI built to deliver sub-second detection, classification and investigation of sophisticated threats.
FortiAI: Virtual Security AnalystTM Product Details
FortiGuard Labs, Fortinet’s leading threat intelligence and research team, consists of threat researchers, analysts, and engineers are in the forefront of exposing new threats. This team shares their latest threat intelligence via community blogs, threat playbooks for organizations, as threat protection via intelligence services, and by developing new threat-based technologies. One of the most significant technologies built by FortiGuard Labs in 2012—an AI system to detect and update protection against millions of malware samples seen each day.
FortiAI is the cumulative effort of the AI developed by FortiGuard Labs, and first product of its kind that embeds a sophisticated and mature deep learning model via DNN. FortiAI's patent-pending DNN approach learns about new threats on its own and helps organizations to adapt threat protection to new attacks instantaneously. In addition, FortiAI comes pre-trained with more than 6+ million malware features that can identify threats and classify them into categories. These features can also accurately pinpoint the origin and lateral spread of an attack by analyzing the entire threat movement. Deploying FortiAI on-premises can help security operations teams solve the security resource crisis and accelerate the mitigation of evolving threats.
Features and Benefits
Do More with Less
Offloads a security analyst’s threat investigation duties
Accelerate Threat Response
Accurate threat detection and investigation results delivered in a sub-second
Improved Security Posture
Adapt to new attacks and disrupt malware outbreaks
Mature deep learning model leveraged since 2012 comes pre-trained with 6+ million malware features
FortiAI Models and Specifications
FortiAI is offered as an on-premises hardware appliance designed for deployment at data centers and campuses.
As overburdened security operations teams struggle with increasingly volume and sophistication of threats, AI is key to reducing the workload of threat investigation and ultimately accelerating threat mitigation. This fully functional FortiAI: Virtual Security AnalystTM demo provides users the opportunity to experience the power of DNN, a sophisticated AI. The demo will explore how FortiAI self-learns and applies its intelligence to identify and classify threats in attack scenarios, as well as investigate threat campaigns and their lateral spread in a timeline with built-in context that is all delivered instantaneously.
Below are answers to common questions regarding FortiAI:
What does FortiAI intend to solve?
FortiAI address two key functions. First, is to mimic human intensive performed by a Security Analyst such as malware research and breach investigation since FortiAI is packed with years of FortiGuard Labs experience in a box. Second, is to cut down the detection and subsequent investigation time from hours or minutes to sub-second, which is crucial for real-time protection against breaches. This is accomplished by the embedded sophisticated patent-pending Deep Neural Networks with enhanced logic.
How does FortiAI work?
FortiAI is deployed on-premises and can either sniff network traffic via switched port analyzer (SPAN) or test access points (TAP) on the wire, or accept files from a FortiGate(s) via 10G interface. Then, FortiAI process the traffic with Deep Neural Networks (DNN), provides verdict by accelerated GPUs to identify, classify, and investigate these threats without requiring signatures or human intervention. This built-in AI is based on a self-learning model and will continue to evolve to protect against existing and new forms of threats both known or unknown.
What is Virtual Security AnalystTM?
Virtual Security AnalystTM is designed to augment a lean Security Operations with additional 'experienced Security Analyst' that comes with years of malware research experience and is capable of tracing the source of infection and malware spread that is extremely useful in outbreak and breach investigation.
How fast can FortiAI be up and running?
FortiAI comes pre-trained analyzing 20+ million clean and malicious files and samples in FortiGuard Labs, meaning it works out-of-the-box on day one. It will continually learn on its own and adapt to new attacks, creating tailored threat intelligence relevant to a customer’s specific organization.