AI threat detection
Does the AI detect malicious domains on the spot when an user tries to access the domain? Or does it discover new domains and creates a blacklist of the malicious ones?
I'd say logic would say it's done on the spot as having a filter would brake the entire use, as it's meant to be an extra 0 day layer.
Although I have no confirmation, I've tried to understand it when it first came out, if Malicous or Malwaretisenent website was up, it would detect the site, when the same site was down, it wouldn't detect it. So I would say from what I've seen it seems as if it's on the spot analysis. But I can't guarantee, until we ask them.
New update on how it works, my intial assumption isn't exactly it but instead of doing it on Query they do it when the domain comes up here is an exact quote.
"To be clear, our system is better than live as we perform detection on domains as soon as they come into existence (before you would even query them for the first time) and keep scanning them on a regular basis. We use different ways to learn about those domains which is also used for NRD."
I was honestly little surprised about the response since I compared it to DNSFilter and that's meant to be live and it was even better, so it didn't make sense in my head.
Now it makes far more sense for why and how it's able to detect new domains so quickly and matches my intial statement of 0 day security.
So happy to say, I was wrong, but the security given is somehow even better than live as I've seen from my testing agaiant a live system through DNSFilter where NextDNS was better at detection.
This answers the question I had when I intially had the first response,
Okay so it's not live but somehow detects threats that were reported less than 30 minutes ago (Newly Registered on that day as well) and gets a better result than DNSFilter, so I was questioning my method of testing and if I was making a mistake with my methodology.
Hopefully this answers your question as well, it made me understand their way of doing this a lot better personally.
It's worth using?
I'm also asking because of the beta status.
- 2 wk agoLast active