创新及科技解决方案

解决方案编号

S-0820

解决方案名称

RISK.HK VULNERABILITY AGGREGATION

解决方案描述

RISK.HK Vulnerability Aggregation is part of RISK.HK risk assessment & compliance automation solution, which is a vendor-neutral vulnerability and exposure aggregation platforms as well as a process of integrating, deduplicating, and normalising exposure data from multiple security tools (such as SAST, DAST, and network scanners) onto a unified platform.

应用领域

工商业

使用的技术

人工智能

云端运算

数据分析

机器学习

使用例子

Multiple vulnerability scanners are used for scanning different types of vulnerabilities, however, overwhelming amounts of duplicate, conflicting data are also created. RISK.HK Vulnerability Aggregation platforms resolve this by offering:

1) Deduplication: Modern discovery tools find more flaws than ever. AI rapidly filters millions of raw scan results into a short, manageable list of actual operational risks. Merging the same vulnerability found by different tools or same type of vulnerability by a tool into a single, comprehensive record;

2) Normalisation: Translating different types of dataset of different tools into a single, standardised vulnerability dataset;

3) Contextualisation: Enriching vulnerabilities with asset criticality and live threat intelligence to help prioritise what to patch first; and

4) Vulnerability Management to aggregate assets, findings, and threat data to provide risk-based workflows and accelerate remediation.

若政府部门欲对创科方案进行PoC试验或技术测试,请联络Smart LAB。