ForensicsID was developed to allow system administrators and IT professionals to employ real-time forensics without the need for expensive forensics specialists.

P R O F I L E

The Problem: Growing Threats to IT Security

In 2004, a software sales and marketing professional with a background in security, met with a U.S. government Chief Forensics Strategist to talk about the gaping holes in Windows PC and web security.

Cyber crimes were morphing and growing at an incredible rate, creating today's cyber crime pandemic. Attackers penetrated firewalls, network intrusion detection, and exploited Windows vulnerabilities, including assaults at the data, BIOS and device driver level.  Attacks against sensitive U.S. government agencies became widespread and pandemic in scope, creating growing concern of a large-scale cyber event.  Ultimately, attackers successfully attacked the Host PC application layer, a notably weak link in the IT security chain. The emerging science of cyber situational awareness was being developed through the implementation of theoretical data rather than data collected during a cyber attack.

The Solution: Actualizing the Potential of Cyber Situational Awareness

Realizing that there was an urgent need, the decision was made to launch Adaptive Cyber Security Instruments, Inc. (ACSI) to develop a real-time forensics analysis, detection and intelligent Cyber SA platform that could tell when someone was actively attacking a PC host, application or server – without the attacker being aware that they were being monitored and tracked. Significant forensics and volatile data would be collected at the point of attack, enabling an analyst to make intelligent decisions regarding the attacker’s motives, attack profile, hacker tools and methods with sound indicators of the threat in process. The use of real rather than theoretical data would represent a significant advance in the science of Cyber SA.

Cyber SA : Peace of Mind

The company assembled a team of senior software engineers, architects, and security professionals who understood the global cyber crime pandemic – and the compelling need to give Windows PC users and network administrators peace of mind.

As the development process evolved, the company embraced the value of Cyber SA to the intelligence community, and understood that the capture of real data represents far greater value than hypothetical reasoning or “guess-work” in meaningful and intelligent decision-making.

The result: The only Real Time Forensics and Federated SA system that detects, monitors, captures, and contains an attack for a wide community of interest, preventing escalation of the attack vector, and designed to be managed by IT systems administrators.