創新及科技解決方案

解決方案編號

S-0820

解決方案名稱

RISK.HK VULNERABILITY AGGREGATION

解決方案描述

RISK.HK Vulnerability Aggregation is part of RISK.HK risk assessment & compliance automation solution, which is a vendor-neutral vulnerability and exposure aggregation platforms as well as a process of integrating, deduplicating, and normalising exposure data from multiple security tools (such as SAST, DAST, and network scanners) onto a unified platform.

應用領域

工商業

使用的技術

人工智能

雲端運算

數據分析

機器學習

使用例子

Multiple vulnerability scanners are used for scanning different types of vulnerabilities, however, overwhelming amounts of duplicate, conflicting data are also created. RISK.HK Vulnerability Aggregation platforms resolve this by offering:

1) Deduplication: Modern discovery tools find more flaws than ever. AI rapidly filters millions of raw scan results into a short, manageable list of actual operational risks. Merging the same vulnerability found by different tools or same type of vulnerability by a tool into a single, comprehensive record;

2) Normalisation: Translating different types of dataset of different tools into a single, standardised vulnerability dataset;

3) Contextualisation: Enriching vulnerabilities with asset criticality and live threat intelligence to help prioritise what to patch first; and

4) Vulnerability Management to aggregate assets, findings, and threat data to provide risk-based workflows and accelerate remediation.

若政府部門欲對創科方案進行PoC試驗或技術測試,請聯絡Smart LAB。