Microsoft today launched a private preview of 'Interflow', a security and threat information exchange platform designed for those working in cybersecurity. The aim is simple: to help security professionals to respond much faster to threats than they have been able to before.
The announcement about Interflow was made by Jerry Bryant, Microsoft’s Lead Senior Security Strategist, on the Microsoft Security Response Center blog and is said to use “industry specifications to create an automated, machine-readable feed of threat and security information that can be shared across industries and groups in near real-time."
Microsoft has said that Interflow will be a “distributed system where users decide what communities to form, what data feeds to bring to their communities, and with whom to share data feeds.”
Interflow will also be able to integrate with other systems too, thanks to its support for various open specifications such as STIX (Structured Threat Information eXpression), TAXII (Trusted Automated eXchange of Indicator Information), and CybOX (Cyber Observable eXpression standards). It will also make use of plug-in architecture and a specific software development kit to help professionals with integration.
Any security teams who might be interested in trying out the private preview can do so by contacting firstname.lastname@example.org; the full roll out of the service is expected later this year. You can read more about Microsoft Interflow and the private preview on the official site.