Fortinet, a global integrated and automated cybersecurity solutions, today announced FortiAI, an appliance that leverages self-learning Deep Neural Networks (DNN) to speed threat remediation and handle time-consuming, manual security analyst tasks. FortiAI’s Virtual Security AnalystÔ embeds a mature cybersecurity artificial intelligence, developed by Fortinet’s FortiGuard Labs, directly into an organization’s network to deliver sub-second detection of advanced threats.
Self-learning AI adapts organizations’ threat protection
To address the challenges faced by security professionals today, Fortinet is unveiling FortiAI Virtual Security AnalystÔ to accelerate threat remediation. FortiAI handles many of the time consuming, manual tasks currently expected of security professionals, preserving their time for higher-value security functions. FortiAI’s self-learning capabilities continue to get smarter once deployed in an organization’s network.
It leverages deep learning known as Deep Neural Networks, which mimic neurons in the human brain, to make complex decisions based on its scientific analysis of threats specific to the organization where it is deployed. As FortiAI’s artificial intelligence continues to mature, organizations benefit from having FortiAI’s Virtual Security AnalystÔ effectively transform and adapt threat protection.
FortiAI levels the playing field
Fortinet’s Deep Neural Networks (DNN) approach enables FortiAI to revolutionize threat protection by:
Automating time-consuming manual investigations to identify and classify threats in real-time: Organizations using legacy security processes combined with limited security staff find it difficult to perform manual investigations for each threat alert. This creates additional risks including a data breach or security incident due to slow response time. To solve this, FortiAI automates investigations using DNN to identify the entire threat movement and uncover patient zero and all subsequent infections in a sub-second.
Transforming security processes for instant detection and remediation of attacks: FortiAI’s Virtual Security AnalystÔ significantly reduces the time organizations are exposed to threats by scientifically analyzing characteristics of threats and generating an accurate verdict to accelerate threat response.
Delivering tailored threat intelligence to significantly reduce false positives: False positives are a burden for security analysts to investigate and it is time-consuming to determine threats versus non-threats. Through tailored threat intelligence, FortiAI learns new malware features as it adapts to new attacks instantaneously and reduces false positives.
On-premises protection for air-gapped networks
Another key distinction of FortiAI is that it offers on-premises AI suitable for organizations that have air-gapped networks. Operational technology environments, government agencies and some large enterprises must adhere to strict compliance regulations and/or security policies that limit their network’s connection to the internet. FortiAI with its self-learning AI model does not require internet connectivity to learn and mature, enabling organizations with closed environments or stringent security policies to stay ahead of threats.
Fortinet’s AI-driven technologies automate threat protection
Some of the existing Fortinet offerings and services, complemented by the new FortiAI, that leverage various forms of AI, such as least-squares optimization and Bayesian probability metrics, include:
FortiGuard Labs Threat Intelligence: FortiGuard Labs uses proven advanced AI and machine learning to gather and analyze over 100 billion security events every day. This threat intelligence produced by FortiGuard Labs is delivered to customers through its subscription services available for a range of Fortinet’s products, including the flagship FortiGate NGFWs. As a result, customers benefit from artificial intelligence deployed in global labs for faster threat prevention.
FortiSandbox: Fortinet is the first security vendor to introduce AI to sandboxing to automate breach protection. FortiSandbox includes two machine learning models to its static and dynamic analysis of zero-day threats, improving the detection of constantly evolving malware, such as ransomware and cryptojacking. Through the use of a universal security language to categorize malware, FortiSandbox also connects discussions between network and security teams, leading to more integrated and improved security operations.
FortiEDR: Fortinet’s FortiEDR uses machine learning to automate the endpoint protection against advanced threats with real-time orchestrated incident response functionalities. Customers also benefit from more control of the network, user and host activity within their environments.
FortiInsight: FortiInsight uses machine learning analytics to effectively monitor endpoints, data movements and user activities to detect unusual, malicious behaviour and policy violations attributed to insider risk.
FortiWeb: To better protect web applications and APIs, FortiWeb applies machine learning to tailor a unique defence for each application. As a result, FortiWeb can quickly block threats while minimizing the false positives that may interfere with the end-user experience.
FortiSIEM: FortiSIEM leverages machine learning to recognize patterns in typical user behaviours like location, time of day, devices used and specific servers accessed. FortiSIEM can then automatically notify security operations, teams, when anomalous activities occur, like concurrent logins from separate locations.
As cybercriminals look to exploit the expanding digital attack surface with sophisticated attacks, the breadth and depth of the Fortinet Security Fabric’s AI-driven technology provides customers with unparalleled threat prevention, detection and response that can be instant and automated.