The three primary components of Anchiva's Threat Detection Network are the Anchiva collecting network, the Anchiva threat center, and the ASDN (Anchiva Services Distribution Network).

 

Figure below shows the sample collection and analysis process of Anchiva collecting network. RapidRx researchers work diligently and consistently to identify new internet threats by efficiently and accurately analyzing information gathered from a broad collection source. RapidRx actively participates in the malware research community and has been credited with discovering and reporting many new malware threats to the Wildlist Organization (www.wildlist.org). Using multiple collection sources (honeynets, web crawlers, customer feedback, heuristics analysis, and exchange) gives the RapidRx team a broad view malware threats, allowing for the identification of the most active

malware threats.

 

Once the samples are collected, approximately 90% of malware samples are analyzed using IPR technology while the remaining 10% is analyzed manually by RapidRx researchers. As new malware and new malware variants are discovered, Anchiva Malware Signature Library and Anchiva Malicious Sites Database are generated and fed through a strict automated test verification system that tests the accuracy of the signature to detect the new malware. Once the detection accuracy is verified, the signatures are then uploaded to the ASDN for distribution to the field.

 

Deployed at data centers around the world, the ASDN serves real-time threat intelligence updates to SWG deployed at customer's networks. Compromised of upgrade servers, it guarantees prompt distribution of signature libraries of malware, malicious sites, and web application control to Anchiva SWG.