Dragos Classification Details

This article summarizes which device attributes can be enriched from our connector with Dragos, and the benefits of using that enriched data in policy.

Our integration with Dragos is intended to allow customers to use the most accurate device classifications in policy decisions. Dragos collects and analyzes device traffic in order to identify device details and attributes over time. Elisity leverages our own rapid device discovery mechanisms along with the Dragos' analysis so that our customer’s devices get the most appropriate policies applied in a timely manner. 

 

When a new device is discovered by any of Elisity's methods, Cloud Control Center queries Dragos using the following parameters until a match is found: 

1. MAC Address Only

 

A new query is made every 24 hours to check for updated device attributes but can be refreshed on demand by clicking the refresh button next to the Dragos name under the Trust Attributes section of IdentityGraph for a device. Any devices learned by Elisity prior to the Connector being configured will be automatically scheduled for enrichment during the next 24 hour cycle and based on their attachment timestamp. 

 

 

Was this article helpful?
0 out of 0 found this helpful