In the eyes of large industry users, the key to measuring the capabilities of a network security company is whether the company has a set of strategic concepts that fit users, face the future, and continue to develop.

As a cyber security company with technology as its core competitiveness, “Smart Security” is the concept system proposed by NSFOCUS in 2010. After three years of accumulation and iteration, in March this year, NSFOCUS released the Smart Security 3.0 concept system, which is another strategic upgrade of NSFOCUS’s security concept. The core of this concept is to build a “full-scenario, trustworthy, and actual combat” security operation capability under the guidance of systematic construction to achieve the protection effect of “comprehensive protection, intelligent analysis, and automatic response”.

The idea is not only the planning and outlook of the high-rise building, but also the actual implementation to bring value to users. In the digital age, “fusion” is the general trend. All walks of life are embracing new technologies, embracing the Internet, and continuously innovating and developing through the integration of digital technologies, such as the “integration of industrialization and industrialization” that the state promotes. In the field of network security, integrating security capabilities into its own development and integration into all walks of life is the continuous implementation of NSFOCUS’s “Smart Security 3.0”.

How to achieve “full scenario, trustworthy, and actual combat” capability integration in network security? At the recent TechWorld2021 NSFOCUS Technology Carnival, NSFOCUS shared with the industry its own practice of “convergence” of its security capabilities in scenarios, technologies, production and research, in order to provide the industry with security capabilities that enable digital transformation. Reference approach.

Incorporate security capabilities into the “full scenario”

“Traditional network security mainly focuses on IT assets, while current network security covers family life, business operations, social infrastructure, and even national critical information infrastructure, and is closely related to digitalization.” said Ye Xiaohu, chief technology officer of NSFOCUS Group. The development of digitalization It has had a profound impact on network security, and what network security has to solve is no longer a narrowly defined IT security problem.

Ye Xiaohu introduced that one of the core elements of the “Smart Security 3.0” concept system, “full scenario”, is to consider network security from the perspective of the integration of new elements, new facilities, and new applications. For vertical industry applications, sort out business relationships and conduct risk prediction. , Threat modeling, etc.

Driven by new technologies such as 5G, vertical industry applications have shown various forms. Different companies have different scenarios and different development stages. They need to develop different levels of security capabilities based on their own business development, security capability development and planning Construction.

For example, traditional network security mainly considers the two elements of “external threats” and “internal violations”, but industrial Internet security is very different from traditional IT security. It is necessary to consider the impact of the integration of security and safety, environment, business, cost, etc. New challenges are presented to security capabilities.

Ye Xiaohu said that in the face of new business formats and scenarios brought about by new technologies, NSFOCUS actively engages in in-depth technical cooperation with industry and enterprise users to integrate security capabilities and vertical industry application scenarios, such as jointly establishing a 5G security laboratory with the Institute of Information and Communications Technology. , To jointly explore the application of new network security technologies in 5G scenarios. Only in this way can we truly gain insight into the security issues of various industries and scenarios, and then provide effective solutions.

“Trustworthy and practical”, integrating product technical capabilities

The Smart Security 3.0 construction framework comprehensively considers the four core elements of assets, applications, identity, and data, and launches 12 projects including the Smart Security Comprehensive Prevention and Control Project at different levels. This places extremely high requirements on the company’s technical product capabilities.

Ultimately, the implementation of the concept still needs strong technical strength as support. NSFOCUS has always regarded security technology as its core competitiveness. Liu Wenmao, chief security expert and head of the innovation center of NSFOCUS Group, introduced the latest innovative security capabilities of NSFOCUS, including 5G core network element abnormal behavior detection, cloud-native security capabilities, scalable multi-engine alarm evaluation technology, and encrypted traffic Identification, traceability prediction engine based on knowledge graph, cyberspace asset mapping to realize wall chart operations, Internet threat capture analysis system, etc.

Technological innovation must not only consider the current problems, but also face the future and carry out more forward-looking research work. For example, the security of the Internet of Vehicles is currently a key investment field of NSFOCUS, and has achieved many results in the research of security offenses and defenses, security protection of key components, and security testing tools. But in the field of data security and AI security, when the industry began to use privacy computing, federated learning, secure multi-party computing and other technologies to solve data sharing problems, NSFOCUS has begun to consider the problems of secure multi-party computing and federated learning. In addition, quantum computing, satellite Internet and other current hot spots or areas that will have a significant impact on the economy and society in the future are all the key areas of NSFOCUS’s focus.

At the same time, the “three modernizations and six preventions” measures proposed by the regulatory authorities are “actualized” as the first priority. Actual combat is also a key part of the Smart Security 3.0 concept. NSFOCUS has built an actual combat operation system based on intelligence and threat hunting, which can provide customers with accurate threat intelligence; at the same time, it can automate the production of actual combat intelligence to solve the problems of untimely intelligence response or high threshold for intelligence processing.

In order to integrate the company’s own technological innovation capabilities with the Smart Security 3.0 concept, NSFOCUS has carried out these tasks:

First of all, systematization ability precipitation. Past knowledge and abilities are dependent on experts. NSFOCUS emphasizes the systematization of capabilities, the transformation of expert knowledge into organizational assets, and continuous evolution.

Second, scenario-based agile production capacity. Products or technologies are fundamentally universal, and the difficulty lies in the need to integrate with the user’s business and scenarios. “Agile” means responding quickly to customer needs and accelerating product iteration and updating based on actual conditions. NSFOCUS used to develop integrated products, but now based on the requirements of “agile”, it continuously transforms the process system and combines safe operations to form rapid interaction.

Finally, it is the inevitable trend of solving current security issues-cloud interconnection. In recent years, NSFOCUS has built a complete organization, process, and tool support system through the practice and tempering of safety operations, on-site safety service projects, and actual combat exercises. This system is based on NSFOCUS Cloud. The front-end faces first-line engineers and users, and the back-end connects with researchers to achieve the goal of normalized and real-time joint prevention and control of safe operations.

Integration of production, education and research

In terms of industry-university-research cooperation, NSFOCUS is also using “fusion” to aggregate the superior capabilities of the three parties, providing the latest technological achievements and talents that meet the actual needs of the industry to the entire industry.

In 2017, NSFOCUS and China Computer Federation (CCF) jointly initiated the establishment of the CCF-NSFOCUS “Kunpeng” scientific research fund, which aims to support the research and innovation of domestic universities and scientific research institutions in the form of small and micro projects, and promote scientific research. While transforming technological achievements, it also promotes the in-depth integration of the excellent R&D capabilities of external scientific research institutions and the value of NSFOCUS’s technological products, thereby further building an ecosystem of industry-university-research interactive cooperation and innovative development.

At the TechWorld2021 Technology Carnival, NSFOCUS and universities and scientific research institutions initiated the establishment of the “Kunpeng Forum”.

The establishment of the forum will, on the one hand, open up the industrialization of research results in the field of cyberspace security, on the other hand, open up the links of education, training and employment of cybersecurity talents. Li Yongsong, general manager of the Science, Education, Culture, and Health Division of NSFOCUS Group believes that through cooperation with colleges and universities, such as research on security offenses and defenses, NSFOCUS on the one hand empowers application-oriented talent training and meets the urgent needs of the industry for cybersecurity talents. On the other hand, it is conducive to the school-enterprise linkage of core technology research and accelerates the industrialization of academic research. This kind of cooperation is a win-win situation for both the enterprise and the school. It is the fundamental purpose of NSFOCUS to actively promote the innovation of industry-university-research integration and the school-enterprise cooperation model.

What is the purpose of technological innovation?

Ye Xiaohu believes that from the perspective of a security company, innovation is “solving problems for customers”, and we should insist on solving safety problems for users as the goal. This is the standard for evaluating all innovative technologies. The safety effect that users hope can be boiled down to one sentence-“Useful at critical moments.” This is also the culture that NSFOCUS has always adhered to: professionalism, trustworthiness, and responsibility.

In Ye Xiaohu’s view, as one of the earliest established and developed security companies in China, the core competitiveness of NSFOCUS Meng Technology’s core competitiveness and security capabilities are “integrated” in various scenarios and channels, and are provided to users in a reliable manner, to jointly respond to new security challenges in the future, and empower the digital innovation of the industry.