LookingGlass Offers Opens Exchange to Share Threat Intelligence

Research already has shown that companies think that sharing threat intelligence is a good idea to help keep their data and assets secure. Now LookingGlass Cyber Solutions is offering a secure, open exchange to help enterprises do exactly that securely across security operations.

Elizabeth Montalbano

October 27, 2015

2 Min Read
LookingGlass Offers Opens Exchange to Share Threat Intelligence

Research already has shown that companies think that sharing threat intelligence is a good idea to help keep their data and assets secure. Now LookingGlass Cyber Solutions is offering a secure, open exchange to help enterprises do exactly that securely across security operations.

LookingGlass, which develops threat intelligence and defense solutions, has contributed OpenTPX to the open source community to enable threat intelligence providers and security operations to build solutions that integrate the full context of threat data across their security portfolio, the company said in a press release.

“Enterprises require threat defenses that not only interoperate with each other but also provide more value than the individual solutions deliver on their own,” said Allan Thomson, CTO of LookingGlass, in the release. “The volume and complexity of threats today demands better solutions to address them. OpenTPX technology allows our customers to maximize their tools and operational data to dramatically improve threat visibility, network security and operational efficiencies.”

The company developed OpenTPX to build highly scalable machine-readable threat intelligence, analysis and network security products that can exchange large volumes of data at high speed. The OpenTPX schema allows threat dictionary and meta data to be conveyed only once between communicating systems, according to LookingGlass. It does this by taking advantage of data model inheritance and meta-data constructs.

This architecture allows OpenTPX to transmit hundreds of millions of network security observations without requiring retransmission of the meta data, the company said. In this way, systems can convey the multiple aspects of the network security and threat data in its most basic elements with minimal interpretation, avoiding complex language mappings that often confuse or block efforts to develop interoperable network security and threat intelligence systems, it noted.

A core component of OpenTPX also provides a comprehensive threat-scoring framework that allows security stakeholders such as analysts, threat researchers, those in charge of network security operations and incident responders to make threat-mitigation decisions straightforward, according to LookingGlass. It also automates those types of decisions.

The new OpenTPX integration and accompanying documentation including specifications, data schema, data examples and supporting tools is now available online.

Companies interested in adopting OpenTPX with existing threat intelligence exchange formats such as CSV, STIX can find more information on the LookingGlass website.

Read more about:

AgentsMSPsVARs/SIs

About the Author

Elizabeth Montalbano

Elizabeth Montalbano is a freelance writer who has written about technology and culture for more than 15 years. She has lived and worked as a professional journalist in Phoenix, San Francisco, and New York City. In her free time she enjoys surfing, traveling, music, yoga, and cooking. She currently resides in a small village on the southwest coast of Portugal.

Free Newsletters for the Channel
Register for Your Free Newsletter Now

You May Also Like