安恒信息
安恒資訊科技股份有限公司(股票代碼:688023)成立於2007年,於2019年科創板上市,是國內網路安全、資料安全與資料要素領導企業之一,科創板創新30強中唯一的數位安全企業,也是國內積極推動以AI賦能傳統網路安全、資料安全轉型的典型企業代表。 安恒資訊在業內首批推出並應用“恒腦·安全垂域大模型”,憑藉基於實戰的研發和持續創新能力,進一步形成了DAS (D即-資料安全、A即AI-人工智慧、S即SecurityServices-安全營運服務)為企業核心策略,以網路安全、資料安全、雲端安全、信創安全、密碼安全、安全服務等為主的數位安全能力。 安恒資訊以雲端安全、大數據安全、物聯網安全、智慧城市安全、工業控制系統安全及工業互聯網安全五大方向為市場戰略。憑藉研發實力及持續的產品創新,已形成覆蓋網路資訊安全生命全週期的產品體系,包括網路資訊安全基礎產品、網路資訊安全平台以及網路資訊安全服務,各產品線及業務線在產業中均形成競爭力。
新聞及活動
產品和服務
DAS Web Application Firewall (DAS-WAF)
Web Application Firewall (DAS-WAF) is a cutting-edge application security product designed to safeguard websites, web applications, and other web-based platforms against a wide spectrum of application threats. By combining advanced machine learning algorithms and threat intelligence, DAS-WAF performs multi-dimensional and in-depth analysis on web traffic to detect and block both known and zero-day attacks.
Key benefits for DAS-WAF include:
- Comprehensive Monitoring and Defense
- It provides intelligent protection against known, unknown, and zero-day attack behaviors through a combination of its foundational security engine, intelligent semantic analysis engine, machine learning engine, and behavior analysis engine. This ensures comprehensive protection against various threats and attacks, safeguarding network security and data integrity.
- Rich Application Scenarios
- The Web Application Firewall is delivered in both hardware and software forms and supports multiple deployment modes, including transparent proxy, reverse proxy, routing, bypass monitoring, and embedded options. These flexible deployment modes allow you to choose the most suitable method based on their specific needs. The system also supports centralized management, enabling unified management of WAFs across different regions or clusters through a central deployment, simplifying configuration distribution and centralized log collection and analysis.
- Dual-Protocol IPv4 and IPv6 Support
- The Web Application Firewall supports dual-protocol IPv4 and IPv6 stacks under various deployment modes such as transparent proxy, reverse proxy, and bypass mirroring. It provides comprehensive security protection for both IPv4 and IPv6 web services. The system also supports management via IPv6 addresses.
Unified Security Management Platform (DAS-USM)
The Unified Security Management Platform (DAS-USM) provides a one-stop account operation and maintenance management solution covering three phases: pre-operation, in-operation, and post-operation. This includes host discovery, account discovery, account analysis, permission control, operational auditing, automatic password change, and more.
Key benefits for DAS-USM include:
- Simplified Management
- Centralized management of all device access permissions simplifies the workload of operation and maintenance (O&M) personnel and improves management efficiency.
- Efficient O&M
- Provides a variety of O&M tools and methods, retaining original O&M habits, improving operational efficiency and accuracy.
- Automatic Password Change
- Periodically updates account passwords, ensuring password complexity and security, thereby reducing the risk of password leakage.
- Automatic Password Change
- Periodically updates account passwords, ensuring password complexity and security, thereby reducing the risk of password leakage.
DAS Network Detection and Response (DAS- NDR)
DAS-NDR integrates traffic and malicious file detection, analysis, etc. Relying on feature libraries and detection models, along with intelligent technologies like machine learning, it instantly detects known and unknown threats across the APT attack chain and over 20 types of attacks. It helps identify advanced threats, visualizes threat situations, stores data for analysis, gives real – time warnings, and boosts users’ attack awareness.
Key benefits for DAS-NDR include:
- Incident Monitoring and Response
- DAS-NDR is capable to detect security incidents such as mining, ransomware, botnets, data breaches, host compromises, and lateral attacks. It can also collaborate with firewalls, WAFs, and EDRs to handle and respond to these incidents.
- Attack Forensics and Tracing Analysis
- DAS-NDR can not only identify existing threats but also record information such as the source of the threat, attack methods, attack process, attack targets, and attack impacts.
- Detection of Known and Unknown Threats
- DAS-NDR can conduct comprehensive detection and analysis for various known and unknown threats. Its detection scope covers the entire APT attack chain.
AiLog Big Data Log Management and Analysis Platform (AiLog)
The AiLog Big Data Log Management and Analysis Platform (AiLog) is a next-generation log analysis and security event management system built on a big data architecture. It can collect logs and data from various devices, including logs, performance metrics, security alerts, business data, and user behavior data. After aggregating, standardizing, and filtering these data, AiLog offers functions such as log query, analysis, dashboard setup, report generation etc.
Key benefits for AiLog include:
- Flexible and Cost Effective
- Features a multi-tenant architecture for efficient, secure, and cost-effective solutions for organizations of all sizes. Each tenant can customize configurations. It also provides detailed data permission control and cloud-native deployments, reducing deployment and maintenance costs.
- Powerful Log Management and Analysis Capabilities
- AiLog can collect logs from over 250 brands and 5000+ device models, covering a wide range of network, security, host, application, and database devices. It parses logs from different sources and formats with over 200 rules (customizable) and offers real-time search, analysis, dashboard definition, reports, and ad-hoc queries.
- High Performance and Scalable
- It can process over 1 million logs per second and supports elastic scaling. In high-volume log scenarios (millions of EPS), it addresses high-performance processing. It also supports various deployment modes like cluster deployment for scalability and high availability.
- Enhanced Security and Threat Detection
- Integrates global threat data sources for real-time intelligence support. Uses machine learning for deep log analysis to identify potential threats and abnormal behaviors. Built-in security analysis scenarios help detect device anomalies, exploitations, and lateral penetration.
明禦資料庫審計與風險控制系統
(DAS-DBAuditor)
DAS-DBAuditor focuses on security events for comprehensive and accurate auditing. It records real-time database network activities, conducts detailed operation audits, and manages compliance by alerting in real-time to risky behaviors.By recording, analyzing, and reporting database access, it helps admins generate compliance reports, trace incidents, and use big-data search to quickly query audit reports and find event causes.
Key benefits for DAS-DBAuditor include:
- Easy to Achieve Compliance
- DAS-DBAuditor offers a diverse range of reports, including compliance reports that adhere to industry security standards like Sarbanes – Oxley (SOX) and Level Protection Reference reports.
- Accurate Risk Detection
- DAS-DBAuditor builds a security baseline based on historical access patterns, enabling it to detect new threats such as access from new IPs, new clients using old IPs, or new database accounts used with old IPs.
- High-Traffic Performance
- DAS-DBAuditor has been tested and verified to handle up to 130,000 audit logs per second, with a single agent forwarding rate of 800 Mbps. This enables it to flawlessly manage database auditing tasks in high-traffic scenarios.
- Easy to Achieve Compliance
明鑒漏洞掃描系統 (DAS-RAS)
明鑒漏洞掃描系統是一款融合安恒多年資訊安全漏洞挖掘、滲透測試技術研究和漏洞檢查方法的最佳實務經驗,集主機安全掃描、網站安全掃描、資料庫安全掃描、弱口令發現、基準配置核查於一身的產品,能夠精準評估多維度資產的安全風險,幫助用戶提高網路安全性。
DAS-RAS 主要優勢:
- 全面掃描任務類型
- 「主動+被動」雙引擎驅動,能夠全面覆蓋主機、網站、資料庫、容器鏡像等多種資產類型,精準偵測安全漏洞、配置問題、弱口令、敏感事件等風險。
- 智慧協同賦能
- 創新協同掃描模式,一鍵完成資產偵測、主機與Web 漏洞掃描,實現「資產-漏洞-風險」 關聯分析,顯著提升複雜網路環境的偵測效率與覆蓋率。
- 豐富評估模板
- 內建等保2.0、工信部基線、安恆安全規範等多套合規策略庫,支援自訂基準配置,彈性適配不同產業監理要求。
- 全面掃描任務類型
