Intel Threat Detection Technology

Intel Threat Detection Technology (TDT) is a CPU-level technology created by Intel in 2018 to enable host endpoint protections to use a CPU's low-level access to detect threats to a system. TDT consists of multiple components including Accelerated Memory Scanning, which uses the CPU's integrated GPU to scan memory, and Advanced Platform Telemetry, which uses processor-level activity monitoring to detect unusual activity.[1][2][3][4][5] It is supported on sixth-generation or newer Intel Core CPUs and additional capabilities were added to the 11th generation Core processors.[6][7][8][9]

Intel TDT is integrated into several third-party anti-malware solutions including Microsoft Defender,[10] Check Point Harmony Endpoint,[11] CrowdStrike Falcon,[6] and others.[12]

Accelerated Memory Scanning

Accelerated Memory Scanning (also referred to as "Advanced Memory Scanning"[1][13]) uses the CPU's integrated GPU to scan memory for malicious code, instead of using the CPU directly.[14] This improves system responsiveness during anti-malware scanning.[2] and lowers power consumption.[7] Features include pattern matching, using random forest decision trees, string extraction, entropy calculation, and Euclidean clustering.[15][16]

Advanced Platform Telemetry

Advanced Platform Telemetry collects CPU-level telemetry to detect uncommon activity patterns which might be indicative of malware. The telemetry data is collected from the CPU performance monitoring unit (PMU)[10] and doesn't require a large signature database to detect malware. Instead, it uses machine-learning based correlations to identify indicators of attack[17][18]

For example, Microsoft Defender is able to use TDT's Advanced Platform Telemetry features to detect processor usage patterns indicative of ransomware and cryptojacking[19] with TDT so it can detect them.[20][7][1]

See also

References

  1. ^ a b c "Intel, Microsoft to use GPU to scan memory for malware". 16 April 2018.
  2. ^ a b "Intel® Threat Detection Technology Demo". YouTube. 21 May 2018.
  3. ^ "Intel Announces Chip-Level Security Initiatives, iGPU-Based Malware Scanning". 17 April 2018.
  4. ^ "Intel's security light bulb moment: Chips to recruit GPUs to scan memory for software nasties". 17 April 2018.
  5. ^ "Intel Processors Now Allows Antivirus to Use Built-in GPUs for Malware Scanning". 17 April 2018.
  6. ^ a b "CrowdStrike Falcon® Enhances Fileless Attack Detection with Intel Accelerated Memory Scanning Feature". 3 March 2022.
  7. ^ a b c "Hardware acceleration and Microsoft Defender Antivirus". 16 April 2018.
  8. ^ "Intel adds hardware-based ransomware detection to 11th gen CPUs". 29 December 2022.
  9. ^ "Intel® Threat Detection Technology (TDT) Runtime Threat Detection with HW Telemetry DEVELOPER GUIDE" (PDF). GitHub.
  10. ^ a b "Microsoft Defender for Endpoint CPU (Intel) based Threat Detection of Ransomware". 7 March 2022.
  11. ^ "Check Point Software Technologies Enhances Endpoint Security with Intel vPro Platform". 11 January 2021.
  12. ^ "Future-proofing PC fleets with the powerful pairing of Intel® Threat Detection Technology and AI-Native endpoint protection". 10 May 2024.
  13. ^ "Detect Ransomware and Other Advanced Threats with Intel Threat Detection Technology" (PDF). Archived from the original (PDF) on 22 April 2022.
  14. ^ "Intel Hardware-enhanced Threat Detection" (PDF).
  15. ^ "Intel vPro® PCs Feature Silicon-Enabled Threat Detection" (PDF). Archived from the original (PDF) on 15 March 2023.
  16. ^ "11th Gen Intel® Core™ vPro® Mobile Platform PCs Feature the Industry's Only Silicon-Enabled Threat Detection" (PDF).
  17. ^ "A Closer Look at Intel's Hardware-Enabled Threat Detection Push". 11 August 2021.
  18. ^ "The Crucial Role of Silicon in Advanced Threat Detection" (PDF).
  19. ^ "Hardware-based threat defense against increasingly complex cryptojackers". Microsoft. 18 August 2022.
  20. ^ "Defending against ransomware with Microsoft Defender for Endpoint and Intel TDT: A Case Study". 3 March 2022.
Index: pl ar de en es fr it arz nl ja pt ceb sv uk vi war zh ru af ast az bg zh-min-nan bn be ca cs cy da et el eo eu fa gl ko hi hr id he ka la lv lt hu mk ms min no nn ce uz kk ro simple sk sl sr sh fi ta tt th tg azb tr ur zh-yue hy my ace als am an hyw ban bjn map-bms ba be-tarask bcl bpy bar bs br cv nv eml hif fo fy ga gd gu hak ha hsb io ig ilo ia ie os is jv kn ht ku ckb ky mrj lb lij li lmo mai mg ml zh-classical mr xmf mzn cdo mn nap new ne frr oc mhr or as pa pnb ps pms nds crh qu sa sah sco sq scn si sd szl su sw tl shn te bug vec vo wa wuu yi yo diq bat-smg zu lad kbd ang smn ab roa-rup frp arc gn av ay bh bi bo bxr cbk-zam co za dag ary se pdc dv dsb myv ext fur gv gag inh ki glk gan guw xal haw rw kbp pam csb kw km kv koi kg gom ks gcr lo lbe ltg lez nia ln jbo lg mt mi tw mwl mdf mnw nqo fj nah na nds-nl nrm nov om pi pag pap pfl pcd krc kaa ksh rm rue sm sat sc trv stq nso sn cu so srn kab roa-tara tet tpi to chr tum tk tyv udm ug vep fiu-vro vls wo xh zea ty ak bm ch ny ee ff got iu ik kl mad cr pih ami pwn pnt dz rmy rn sg st tn ss ti din chy ts kcg ve
Prefix: a b c d e f g h i j k l m n o p q r s t u v w x y z 0 1 2 3 4 5 6 7 8 9

Portal di Ensiklopedia Dunia

Portal : Agama
Agama
Portal : Bahasa
Bahasa
Portal : Biografi
Biografi
Portal : Budaya
Budaya
Portal : Ekonomi
Ekonomi
Portal : Elektronika
Elektronika
Portal : Film
Film
Portal : Filsafat
Filsafat
Portal : Geografi
Geografi
Portal : Indonesia
Indonesia
Portal : Ilmu
Ilmu
Portal : Lingkungan
Lingkungan
Portal : Masyarakat
Masyarakat
Portal : Matematika
Matematika
Portal : Militer
Militer
Portal : Mitologi
Mitologi
Portal : Musik
Musik
Portal : Olahraga
Olahraga
Portal : Pendidikan
Pendidikan
Portal : Politik
Politik
Portal : Sastra
Sastra
Portal : Sejarah
Sejarah
Portal : Seni
Seni
Portal : Teknologi
Teknologi

Kembali kehalaman sebelumnya