We have introduced a new configuration called Intensive Threat Protection (ITP) which controls the sensitivity (or intensity) of the machine&learning detection engine in the product. SEP 14.1 achieves better prevention by having better visibility through higher detections. SEP 14.1 solves this problem!! Intensive Threat Protection for more detections The machine learning engine at the heart of SEP14 can be tuned to detect more malware however we must be careful to control the corresponding increase in falseing. Therefore, SEP 14 was tuned to provide a high degree of protection (over 99.9%) while having very low "falseing" (< 0.1%) out of the box. Falses are the bane of any security product and at the scale at which we operate (over 125 million endpoints worldwide) having a high false rate can cause significant cost and productivity overruns. This is essentially the tradeoff that first-gen ML anti-malware competitors made – achieve higher detection by compromising accuracy. A "false" is a condition where a product can mistakenly convict a good file or fail to convict a bad file – the first condition is called a false positive and the second – a false negative. Quick Detour on Detections v/s Falsingīetter detection can be always be achieved if one is willing to make a more mistakes (false detections). By catching these files early and taking appropriate action – one can avoid dealing with a bigger problem later. Unknown files are not always necessarily malicious – but they start out being suspicious before either trending good or trending bad. SEP 14.1 was conceived under the premise all malware outbreaks in an enterprise network comes from unknown files that are continually being introduced into your environment.
But enough about SEP 14!! As much as we love our creation, it is time to talk about our next release – SEP 14.1.
0 kommentar(er)
