Data retention system for cyber investigative operations
Bivio Networks announced the launch of its Data Retention System, a data collection and retention system to strengthen cyber security operations for network operators and government agencies. It tracks user applications, networks and devices, and can be quickly deployed in existing wireline and mobile network infrastructures.
Existing data retention solutions have traditionally focused on collecting data from a specific source, for example call data records (CDRs), IP data records (IPDRs) or server activity logs. This “vertical” collection inherently limits network analysts’ ability to develop a complete view of activity and potential threats.
The solution uses proprietary record correlation technology combined with deep packet inspection (DPI) network probing to enable contextualized multi-source data collection and retention. The system links together disparate pieces of data to form a single record that represents the full context of the collected information. This information enables rich data mining for powerful cyber investigative operations, therefore the solution is primarily targeted to governmental authorities such as law enforcement and public safety agencies.
Key features include:
- Scalable real-time data source record correlation
- 10Gb/s DPI-based network probing enabling application and user context extraction
- Mobile-specific protocol support (WiMax, 3G, 4G/LTE) for wireless network integration
- High-performance record database
- External interfaces for custom data mining and event triggering.
“Existing cyber investigative data collection and retention tools focus primarily on data recording rather than efficiently capturing and generating actionable information,” said Dr. Elan Amir, president and CEO of Bivio Networks. “The Bivio Data Retention System advances the state of the art by delivering data-rich, contextualized information, enabling cyber analysts to detect and respond to complex security threats.”