Intel® Threat Detection Technology

Intel® Threat Detection Technology (Intel® TDT) provides cyberattack monitoring and increased security performance at the hardware level. Endpoint security solutions can leverage Intel® TDT to help discover advanced attacks that evade most other detection methods.

Intel vPro®1 is the only business platform with built-in hardware security capable of detecting ransomware and software supply chain attacks.

Combat Cryptojacking and Ransomware. Increase Performance.

The Intel® TDT AI software can profile malware as it attempts to execute on the CPU microarchitecture. This high-fidelity hardware alert is relayed to security software for fast remediation on the PC and for proactive protections across the fleet. The solution offloads compute-intensive security workloads such as accelerated memory scanning and AI from the CPU to the Intel integrated GPU for an improved user experience.

Threat Detection Use Case: Microsoft Defender for Endpoint

Microsoft Defender for Endpoint delivers industry leading endpoint detection and response to protect against attacks including ransomware. The upcoming integration of Intel® TDT and Microsoft Defender for Endpoint adds another layer of protection by adding security signals sourced directly from the hardware.

Protect Applications with Anomalous Behavior Detection

Intel® TDT anomalous behavior detection (ABD) monitors applications for early indicators of compromise. ABD leverages CPU execution control-flow tracking to build dynamic AI models of "good" application behavior.

Enable Security Software for CPU Threat Detection

With Intel® TDT, security vendors can augment and enhance the behavioral detectors in their own security solutions with hardware-based sensors that profile malware as it executes on the CPU.

Intel® TDT leverages the Intel integrated GPU for security agent offload from the CPU. Offloaded processes may include AI, accelerated memory scanning, or any performance-intensive security workload.

Product and Performance Information

1

All versions of the Intel vPro® platform require an eligible Intel® Core™ processor, a supported operating system, Intel LAN and/or WLAN silicon, firmware enhancements, and other hardware and software necessary to deliver the manageability use cases, security features, system performance and stability that define the platform. See intel.com/performance-evo for details.