Microsoft Interflow debuts to reduce response time
Microsoft on Tuesday launched its security and threat information exchange service dubbed “Microsoft Interflow” that will enable cyber security professionals to respond faster to potential threats.
Interflow comes in the same lines of the company’s 2008 Microsoft Active Protections Program (MAPP) initiative. Interflow service will make use of industry specifications to create an automated, machine-readable threat and security reports that can be published and shared across industries, groups and other networks in near real-time.
“The goal of the platform is to help security professionals respond more quickly to threats. It will also help reduce cost of defense by automating processes that are currently performed manually,” said the Redmond in a press release.
The software giant said as the new program is fully customizable, each user will get to decide which information or feeds are most relevant to their communities. The service uses open specifications with Structured Threat Information eXpression (STIX), Trusted Automated eXchange of Indicator Information (TAXII), and Cyber Observable eXpression (CybOX), which means the service will integrate with existing systems thereby avoiding any potential data lock-in.
Until now, the Redmond had been testing the platform internally with its own security teams, but now the company has confirmed that the service is available in a private beta version for businesses with dedicated security incident response teams.
The company also said it will soon make Interflow available to all MAPP members in near future, though it did not mention an exact timeframe.