Extended detection and response

Extended detection and response (XDR[1][2]) is a cybersecurity technology that monitors and mitigates cyber security threats.[3][4]

Concept

The term was coined by Nir Zuk of Palo Alto Networks in 2018.[5] The 'X' in 'XDR' stands for "extended". Gartner defines XDR as “a SaaS-based, vendor-specific, security threat detection and incident response tool that natively integrates multiple security products into a cohesive security operations system that unifies all licensed components.” Improved protection, detection capabilities, productivity, and lower ownership costs are the primary advantages of XDR.[6]

The system works by collecting and correlating data across various network points such as servers, email, cloud workloads, and endpoints.[7] The system analyzes the correlated data, lending it visibility and context, and revealing advanced threats. Thereafter, the threats are prioritized, analyzed, and sorted to prevent security collapses and data loss. The XDR system helps organizations to have a higher level of cyber awareness, enabling cyber security teams to identify and eliminate security vulnerabilities.[3][8]

The XDR improves the malware detection and antivirus capabilities over the endpoint detection and response (EDR) system. XDR improves on the EDR capabilities to deploy high-grade security solutions by utilizing current technologies which proactively identifies and collects security threats, and employs strategies to detect future cyber security threats. It is an alternative to reactive endpoint protection solutions, such as EDR and network traffic analysis (NTA).[4][6]

See also

References
  1. What is XDR? - Palo Alto Networks
  2. What is XDR? - Extended Detection and Response - Cisco
  3. "Gartner Top 9 Security and Risk Trends for 2020". www.gartner.com. Retrieved 2020-10-26.
  4. "Understanding XDR Security: Complete Guide". Cynet. Retrieved 2020-10-26.
  5. The Industry's first XDR platform
  6. "SASE, ZTNA and XDR: Three Security Trends Catalyzed by the Impact of 2020". www.spglobal.com. Retrieved 2020-10-26.
  7. Kerravala, Zeus (2018-09-06). "EDR is dead! Long live XDR!". InsiderPro. Retrieved 2020-10-26.
  8. Oltsik, Jon (2020-06-08). "What is XDR? 10 things you should know about this security buzz term". CSO Online. Retrieved 2020-10-26.


This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.