Network security is an ongoing challenge in today’s highly distributed large scale networks. Analysis of threats and breaches often requires human inspection and analysis (to separate false alarms and actionable events) which can significantly delay response times and an thus an effective response to breaches. While software has helped with the identification and inspection of anomalous events, some have suggested a collaborative approach between organizations to battle security threats.
This ‘peer-to-peer’ approach means that organizations share traffic information and security breaches between themselves to get a better picture of widespread, distributed attacks. This approach is best suited to attacks that target multiple organizations at the same time such as Denial of Service attacks and ransomware. With the ability to share security information using a peer-to-peer infrastructure, organizations can get a better grasp of the attack that is not possible from an individual site.
admin