Polygraph delivers zero-touch operations by automating three key functions: creating the initial baseline, grouping cloud entities into analysis groups, and maintaining the baseline over time.
After installation, Polygraph starts building the deep temporal baseline. The solution observes communication patterns, resource relationships, and user behaviors to establish a comprehensive picture of these entities and how they work together.
Polygraph also automatically creates “analysis groups,” which are cloud entities that share similar characteristics and communications patterns. These groupings make it easier to visualize cloud operations while dramatically reducing redundant alerts.
Once in operation, Polygraph continuously and automatically maintains the baseline and analysis groups. Polygraph also records anomalies and generates alerts to ensure all aspects of your cloud operation are monitored in real time and available for analysis after every security event.