Email to schedule an appointment: contact@abatis.ch
Protecting data through deterministic access control.
For decades, cybersecurity has concentrated on protecting systems from malicious software. Yet the objective of almost every successful cyber attack is not the compromise itself, but the information that becomes accessible afterwards.
Whether motivated by financial gain, espionage or sabotage, attackers ultimately seek access to sensitive data. Ransomware encrypts it. Criminal groups steal it. Insider threats copy it. Sophisticated adversaries quietly exfiltrate it over weeks or months before their presence becomes known.
Traditional security products attempt to identify malicious behaviour after software has already begun interacting with the operating system and the file system. Aegis approaches the problem from a fundamentally different perspective.
Rather than attempting to determine whether an application appears trustworthy, Aegis determines whether it should be permitted to access protected information in the first place.
Aegis operates within the Windows kernel, where every request to access protected data can be evaluated before the operating system grants a file handle. This distinction is important.
Ransomware cannot encrypt a document without first opening it. Data cannot be copied or exfiltrated without first obtaining access. Every operation begins with a request to the operating system.
Aegis establishes deterministic control at precisely this point. Only authorised applications are permitted to access protected information. Requests originating from unauthorised processes are denied before data can be read, modified, encrypted or copied, regardless of the privileges held by the requesting process.
Although originally conceived to defeat ransomware, the underlying principles extend far beyond a single attack type.
Modern cyber attacks increasingly combine credential theft, lateral movement, privilege escalation and data exfiltration. Once an attacker gains access to an endpoint, the objective is typically to discover and interact with valuable information.
Aegis fundamentally changes that relationship. Rather than attempting to recognise every possible attack technique, it establishes deterministic control over the applications permitted to access protected information. Whether the threat originates from ransomware, an unknown zero day exploit, an insider, malicious automation or an Artificial Intelligence generated attack is largely irrelevant. The same policy determines whether access is authorised.
Aegis has been designed to operate alongside Abatis as part of the broader Deterministic eXecution Integrity (DXI) architecture.
Together they create what we describe as the Virtuous Circle of Trust.
Unauthorised software is prevented from executing. Should authorised software subsequently attempt to access protected information outside approved policy, Aegis provides an independent layer of deterministic enforcement. Execution and information remain under continuous organisational authority.
Unlike conventional data protection products, Aegis does not depend upon behavioural analysis, cloud analytics, threat intelligence feeds or continual signature updates.
Protection is enforced through deterministic policy implemented within the operating system itself. Administrative configuration, policy information and operational integrity are themselves protected against unauthorised modification, preserving the integrity of the protection architecture.
This approach reduces operational complexity whilst strengthening resilience against both known and previously unseen attack techniques.
Increasingly, governments and operators of Critical National Infrastructure require confidence that their most sensitive information remains under their own authority.
Aegis has been designed with this principle in mind. Protection decisions are made locally, within the organisation's own environment. There is no requirement to transmit sensitive operational data to external cloud services in order to determine whether access should be granted.
This supports organisations seeking greater operational independence, stronger governance and compliance with increasingly demanding cyber sovereignty requirements.
Cybersecurity should not begin when sensitive information is already being encrypted or stolen. It should begin by determining, with certainty, which applications are permitted to access that information in the first place.
Aegis extends the principles of Deterministic eXecution Integrity beyond software execution and into the protection of the organisation's most valuable asset: Its information.
Download our whitepaper!
Check out our FAQ page!
This site uses cookies to provide you with the best experience on our website. Please, accept cookies for optimal performance. For full details, see our Privacy Policy