New article: Apache software foundation announces Apache Metron, a new top-level project for Cybersecurity read more at here http://www.spinonews.com/index.php/technology/item/3349-apache-software-foundation-announces-apache-metron-a-new-top-level-project-for-cybersecurity

Apache has announced Metron, a cybersecurity application framework for centralized monitoring and analysis of network traffic, as its new top-level project.

Metron provides a scalable security analytics tool based on the Hadoop framework. It consumed and monitored network traffic and machine exhaust data out of data centers, it handles any kind of telemetry data.

The project was submitted to the Apache Incubator in December 2015, and its first release of Apache Metron v0.1, debuted in April 2016. Metron is a unified platform for aggregating and enriching a wide variety of security related data. Its foundations remain in the Hadoop ecosystem, and it is built atop fellow Apache projects Storm, HBase and Kafka to handle streaming data in a real-time fashion.

[Apple’s new tool makes it easier for iPhone owners to share Live Photos]

Metron can ingest, transform and normalize any source of telemetry at scale, including full network packet capture. Data ingested into Metron can be enriched with valuable context, such as geographic location or asset identifiers as it streams by.

New enrichments can be specified with no-downtime through user defined functions and a robust scripting language. Security threats can be specified and allocate using either rules or machine learning models so that only the greatest threats are prioritized for threat response and investigation.

Casey Stella, Vice-President of Apache Metron, said, it is abundantly clear that cybersecurity challenges are becoming a bigger part of our reality. Solving them effectively and at scale requires an Open Source, community-oriented approach built upon proven scalable technologies.

 

Currently, Australia’s largest telecommunications, media, and Internet Service Provider, Telstra, use Apache Metron to power enterprise-grade security operation centers in key service hubs.