Zero-Trust. Extended.

The potential impact of AI on cybersecurity is immense and growing, notable examples being:

1. Offense: Speed of attack is an order of magnitude higher than humans can respond to.

2. Offense: The speed, breadth, and depth of AI-powered attacks create an explosion in false positives, overwhelming already stretched teams and obscuring stealth threats.

3. Defense: AI-powered, automated defense architectures are needed as a response to this.

AI means the democratization of sophisticated cyber-attacks; it is no longer the exclusive realm of nation-state actors. Sophisticated, multi-stage stealth attacks are within reach of many actors.

AI can bring huge benefits to cybersecurity tools, but as the emphasis on speed and volume of inference grows, a small, vital (and until now, overlooked) step in the process will greatly impact the ability of AI to reach its potential in this space. That step is to answer to this question:

“Is the telemetry the AI is acting on true or false?”

This is fundamentally important: if AI reasons over falsified or wrong data, then users simply end up in a worse place, even faster; this will limit the acceptance of AI in cyber-defense. The reasons for false data can be intentional (e.g., cyber-attacks) or unintentional (e.g., tool misconfigurations), but the credibility of AI to add value in cybersecurity depends on the answer. NetsapienTM PILOT is the answer.

PILOT = Parallel Inferred Layer Of Trust.

All existing cybersecurity tools infer meaning from the telemetry they see.

PILOT infers meaning about the telemetry it sees.

Where all other cybersecurity tools implicitly trust the data they see and act upon, PILOT says: “trust nothing, not even your own telemetry.” We call this Zero-Trust, Extended. Without Trade-Off.

PILOT is our patent-pending invention, a new layer in the architecture of cybersecurity, and importantly, it is designed to work with all existing cyber-tools, making them more reliable; there is no rip & replace.

PILOT operates using a Causal Digital Twin (CDT), which uses the same core process for both OT (cyber-physical) and IT (cyber-digital) cyber threats. One platform for single or multiple cyber-domains.

A CDT approach to OT cyber-physical attacks (an embodiment of our patent-pending design) has been validated to TRL 5 in independent EU-funded research, with impressive results: 74% reduction in false positives; 83% stealth threat detection rates (massively improving on existing tools); 61% improvement in Root Cause Analysis (making defenses much more efficient); Real-time response (<4 ms of latency). Digital Twins Solutions enables AI-driven cyber defense to operate on trusted data, dramatically improving outcomes without replacing existing tools.