How it Works
Detection
Deterministic Threat Detection
Crytica’s RDAi™ system detects threats through the coordinated operation of two core components: the Probe and the Detector.
The Probe operates inside each protected device, continuously scanning instruction sets and files that should remain static to detect unauthorized changes at the moment they occur.
The Detector operates externally, managing and analyzing data from multiple Probes to detect changes and performance anomalies. Each Detector supports hundreds of Probes, enabling scalable deployment across environments, and monitors other Detectors.
Unlike probabilistic tools that rely on inference or behavioral analysis, Crytica provides “high-fidelity” detection based on system changes that generate deterministic alerts for system integrity and actionable alerts for performance anomalies.
The Probe operates inside each protected device, continuously scanning instruction sets and files that should remain static to detect unauthorized changes at the moment they occur.
The Detector operates externally, managing and analyzing data from multiple Probes to detect changes and performance anomalies. Each Detector supports hundreds of Probes, enabling scalable deployment across environments, and monitors other Detectors.
Unlike probabilistic tools that rely on inference or behavioral analysis, Crytica provides “high-fidelity” detection based on system changes that generate deterministic alerts for system integrity and actionable alerts for performance anomalies.
Supporting Components
The Probe
Operates inside the device for direct detection
Continuously scans instruction sets and static files
Runs with a footprint as small as 70KB
Uses minimal system resources
Automatically replaced if compromised
Supporting Components
The Detector
Analyzes Probe data to identify unauthorized changes
Manages and coordinates operations across hundreds of Probes
Generates deterministic alerts based on unauthorized changes
Monitors other Detectors in mutually monitoring mesh
Detects performance anomalies that may indicate system issues
The Rapid Detection, Alert, & Isolation System
Additional Capabilities
Crytica’s RDAi system is built upon a distributed detection architecture with four core functions.
Detection
Crytica’s RDAi™ detects unauthorized changes to deliver actionable alerts in seconds.
Administration
RDAi™ Administration manages deployment, visibility, and databases across security platforms.
Interoperability
The RDAi™ Integrator enables Crytica to collaborate with other cybersecurity systems.
Resilience
Built for resilience, Crytica’s RDAi™ uses split intelligence to maintain detection.
