Sangfor Recognized as a Sample Vendor for Two Technologies
We are excited to announce that Sangfor has been recognized as a Sample Vendor for two security technologies in the Gartner Emerging Tech Impact Radar: Security, published November 16, 2022.
The two technologies Sangfor is recognized for are:
- AI-Based Security Operations
- Deception as a Feature
About the Emerging Tech Impact Radar: Security
Emerging Tech Impact Radar: Security is a piece of Gartner research that “aims to track some of the more impactful emerging technologies and trends driving innovation in the security market.” This Impact Radar analyzes 27 emerging security technologies and trends, which are then scored on two significant aspects:
- Range: when the technology is expected to have a significant impact on the market.
- Mass: how big an impact the technology will have on relevant markets.
We believe that this Gartner research helps IT security managers gain a deeper understanding of emerging technologies and trends in the security market. Based on each technology’s Range and Mass as observed by Gartner, IT security managers can assess the value of each technology to their organization and time investments according to their organization’s needs.
About Sangfor’s Recognized Technologies
AI-Based Security Operations
Range: 1-3 years
Description: “AI-based security operations will be leveraged for post-detection actions, including alert prioritization, augmented threat detection/hunting, playbook creation and the automation of specific incident response (IR) processes. All this will speed up and increase the efficacy of alert triage, enhance alert enrichment, enable better correlation of low level alerts and telemetry across multiple source systems and ultimately improve analyst accuracy and response times.”
Mass: High. Gartner rates AI-Based Security Operations as high, noting that “the shortage of skilled security practitioners will continue to drive an increased appetite for automation within the security operations field, and AI will be strongly leveraged across a range of products to deliver enhanced security outcomes at greater speed.”
AI-Based Security Operations in Sangfor Products
Artificial intelligence (AI) runs through all Sangfor security products and is the key enabler of their advanced threat detection capabilities. For example, our next generation firewall, Sangfor NGAF, and endpoint detection and response (EDR) solution, Endpoint Secure, are both integrated with our AI-powered Engine Zero malware detection engine. Unlike signature-based detection, which matches files with known malware patterns and characteristics, Engine Zero combs through the entire suspected file for signs of maliciousness and categorizes its finds into multiple features. To ensure the accuracy of malware detection, we tested Engine Zero against millions of malware samples to enable it to run and teach itself, expanding our capacity to discover unknown malware and their families.
Our network detection and response (NDR) solution, Sangfor Cyber Command, leverages AI to detect highly sophisticated behavioral threats hidden in network traffic. Using AI to analyze and correlate events from across the network, Cyber Command “connects the dots” between events from various data sources to uncover threats that are missed by point solutions. Event correlation also provides security operators with highly contextualized alerts to streamline investigation and threat hunting efforts so that threats can be identified and eliminated in a timely manner.
Deception as a Feature
Range: 6-8 years
Description: “The design point of deception technology is to supplement an organization’s legitimate technology assets (files, databases, domains, servers, applications, credentials, etc.) with a maze of fake assets (decoys, lures, traps and bait) in an attempt to learn about attackers and misdirect them from the genuine articles. In doing so, the attackers are tempted into interacting with this fictitious environment. This ensures that they are not spending their time fruitfully progressing toward their ultimate aims while simultaneously triggering alerts that enable security teams to observe, understand and respond to the attack that is in progress.”
Deception as a Feature in Sangfor Products
We have integrated deception as a feature into our endpoint detection and response (EDR) solution, Endpoint Secure. Sangfor Endpoint Secure customers will be more familiar with our deception as a feature as the ransomware honeypot, which is part of Sangfor’s range of innovative anti-ransomware capabilities. To date, Sangfor Endpoint Secure is the world’s first and only endpoint security product with a built-in endpoint ransomware honeypot.
The ransomware honeypot strategically places bait files in system-critical, high target and random computer directories. Once the honeypot detects the encryption of these bait files, Endpoint Secure immediately kills the encryption process. The encryption controlling application is also identified and then located on other infected systems allowing “One-Click Kill” to eradicate the detected ransomware throughout the organization with just a single mouse click.
Learn more about Sangfor’s entire range of cutting-edge security products and services by visiting our cyber security page, where you will find out all about their features and capabilities, use cases, customer success stories, and more!
 Gartner, Inc., Emerging Tech Impact Radar: Security, Elizabeth Kim et al., published 16 November 2022
Disclaimer: GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.