CleanZone DDoS Defense Capacity to More Than Double
LLM Integration in AI Mail Security
On May 14, KT announced that it will strengthen its artificial intelligence (AI) and big data-based business-to-business (B2B) security services. KT's enterprise security services include "CleanZone" and "AI Mail Security." These services are offered as Security as a Service (SECaaS) products, which can be implemented without additional equipment installation or changes to IT infrastructure.
KT employees monitoring and responding to cyber attacks such as DDoS at the KT Integrated Control Center located in Gwacheon, Gyeonggi Province. Photo by KT
First, KT plans to more than double the defense capacity of CleanZone to prepare for the increasing number of cyber incidents and the growing sophistication of hacking attacks each year. In addition, the company will introduce a dedicated customer monitoring dashboard in the third quarter, which will allow clients to check information such as DDoS attack detection data.
CleanZone supports the stable operation of services by blocking malicious traffic during DDoS (Distributed Denial of Service) attacks and delivering only legitimate traffic to corporate servers. When a DDoS attack with traffic exceeding a certain threshold occurs, KT's KORNET, an internet service for enterprises and public institutions, reroutes the client’s traffic. The CleanZone blocking system then filters out abnormal traffic and sends only legitimate traffic to the company.
Currently, CleanZone blocks attacks in real time based on KT's threat information database, which contains more than 5.3 million records. In addition, AI continuously learns the traffic patterns of each company to provide more precise detection performance.
Furthermore, in the third quarter of this year, KT plans to integrate a large language model (LLM) into "AI Mail Security" to enhance the threat mail blocking report function. Through the AI assistant, users will receive detailed analysis results, including the risk level, importance, and necessary actions regarding threat mail attacks.
AI Mail Security is a security service that blocks cyber attacks such as spam, phishing, and ransomware delivered via email. The service analyzes the sender, attachments, and links within the body of emails received by company employees using AI to determine in real time whether the email is a cyber attack, and blocks it if so.
AI Mail Security uses KT’s proprietary algorithm for threat detection and blocking. It analyzes an average of 600,000 data points per day and learns new threat patterns. Based on its own learning results, KT has additionally blocked about 13,000 variant advanced persistent threat (APT) emails that existing security solutions could not detect over the past year.
In particular, KT supports real-time detection and blocking of Korean-language phishing, large attachments, and compressed files through a mail database and AI model specifically tailored to the domestic market. AI Mail Security is also compatible with a variety of cloud mail services.
KT plans to expand its security services to a wide range of industries, from companies that find it difficult to build security infrastructure such as installing separate equipment, to public institutions.
Myung Jehun, Head of the Service Product Division at KT Enterprise (Senior Vice President), said, "KT is continuously advancing its security services to ensure a stable business environment for domestic corporate clients," and added, "We will help companies respond safely to increasingly sophisticated cyber threats by leveraging AI-based precision analysis and response systems."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
