From Linuxgram: "Internet start-up Cylant Technology has released a new intrusion defense tool on Linux that takes a different tack to
detect and protect networks against both known and unknown attacks.
Cylant says unlike other intrusion detection systems, its technology doesn't rely on a database of known attack
signatures, since it doesn't use rules or patterns for identifying attacks. Instead, the technology focuses on actual
software behavior. Through calibration, which is supposed to last two days on average, CylantSecure learns the
normal behavior of the kernel and then flags any deviation."