Cylance Endpoint Security architecture
Cylance Endpoint Security
architecture
Component | Description |
|---|---|
BlackBerry Infrastructure | The BlackBerry Infrastructure is a global private data network distributed across multiple regions that enables and secures data in transit between thousands of organizations and millions of users around the world. It is designed to efficiently manage the transport of data between BlackBerry services and end-user devices.The BlackBerry Infrastructure registers user information for agent and CylancePROTECT Mobile app activation, validates licensing information, and maintains a trusted connection with on-premises components installed behind the firewall and with agents and the CylancePROTECT Mobile app on users' devices inside and outside the firewall. |
CylancePROTECT | CylancePROTECT Desktop detects and blocks malware on Windows , macOS , and Linux devices using machine learning techniques to render new malware, viruses, bots, and future variants useless. CylancePROTECT Mobile detects malware, sideloaded apps, malicious URLs in text messages, and other security risks on iOS , Android , and Chrome OS devices, and recommends action to eliminate the threat. |
CylanceOPTICS | CylanceOPTICS monitors Windows , macOS , and Linux devices and aggregates collected information to detect, track, alert upon, and respond to malicious events as soon as they occur. CylanceOPTICS can help you detect attacks when they start and automate investigation and response to stop them before they cause harm. |
CylanceGATEWAY | CylanceGATEWAY protects network access for your organization’s private network and cloud-based applications that both gives your Windows , macOS , iOS , and Android users access to your extended network perimeter and protects your extended network from threats. |
CylanceAVERT | CylanceAVERT detects and prevents the loss of sensitive regulatory and organizational information through external sources. CylanceAVERT can discover, categorize, and inventory sensitive company information and provide threat detection to prevent unauthorized exfiltration events. |
Cylance Endpoint Security cloud services | The Cylance Endpoint Security cloud services are the brain power behind each Cylance Endpoint Security feature. The cloud services for different features leverage AI, machine learning, or a risk engine based on user modeling to process large volumes of complex data to identify and respond to threats. For more information, see How Cylance Endpoint Security uses advanced technology to protect users and devices. |
Management console | The cloud-based management console allows you to set up, manage, and monitor all of the features of Cylance Endpoint Security . |
Devices with agents or the CylancePROTECT Mobile app | Agents installed on Windows , macOS , and Linux devices and the CylancePROTECT Mobile app installed on iOS , Android , and Chrome OS devices communicate with Cylance Endpoint Security to detect potential threats and take action to protect your users, devices, and network. |
BlackBerry Connectivity Node | The BlackBerry Connectivity Node is an optional component that allows Cylance Endpoint Security to synchronize users and groups with your on-premises Microsoft Active
Directory or LDAP directory. Cylance Endpoint Security can synchronize users and groups with Entra Active
Directory without the BlackBerry Connectivity Node . |
CylanceGATEWAY Connector | The CylanceGATEWAY Connector is an optional component that you can install behind your firewall and in private cloud networks to establish a secure tunnel between the BlackBerry Infrastructure and your private network. The CylanceGATEWAY Connector allows users to communicate with content and application servers behind your firewall using CylanceGATEWAY instead of a traditional VPN. |