SenseOn's Commitment to Quality Assurance: Your Security, Uninterrupted

Written By James Mistry

Recent events have highlighted the importance of robust quality assurance (QA) processes. At SenseOn, we understand that any disruption to your IT operations is unacceptable and that round-the-clock security is essential. That's why we've built a comprehensive QA framework that prioritises the stability, reliability, and effectiveness of our XDR platform - ensuring we support you in growing your company.

Our Multi-Layered Approach to Detection QA

SenseOn's XDR platform is designed with both endpoint and cloud-based detection capabilities. Each type of update undergoes rigorous testing before reaching customers:

  • Cloud-based Detections: Updates to our backend detection engines are subject to automated static and dynamic analysis. They are then deployed to internal testing environments before being deployed to our cloud platform. Once deployed they are only ever stored and used in SenseOn’s cloud - they are not downloaded to customer systems.

  • Endpoint-Based Detections:

    • Definition Files: Unlike some vendors, our "definition" files are processed in user mode, not kernel mode. This means that even if an error occurs, it won't cause a system crash (BSOD). We also employ a staged deployment process across four test environments, with continuous monitoring for performance issues or failures. If any problems are detected, updates are halted for further investigation and potential rollback.

    • User-Mode & Kernel-Mode Software: Our software updates follow a stringent QA process:

  1. Peer Review: Every code change is scrutinised by at least one (often two) other developers.

  2. Automated Testing: Our culture of automated testing is deeply ingrained. Extensive unit, integration, and system tests run automatically, alongside static and dynamic analysis. Code cannot proceed unless all tests pass.

  3. Alpha Release: Changes are deployed to internal environments (including dedicated test environments) for a 24-hour monitoring period.

  4. Beta Release: Updates are made available to a select group of customers who have opted into our beta program, again with a 24-hour monitoring.

  5. General Availability (GA) Release: Once thoroughly vetted, updates are released to all customers.

  • Kernel-Mode Software (Windows Only): For our Windows kernel-mode drivers, all changes are also certified by Microsoft's Windows Hardware Certification programme, ensuring they meet stringent quality and security standards. We do not execute bytecode in kernel drivers, meaning that logic changes are always part of the certified driver and not delivered in separate content updates.

Your Confidence is Our Priority

At SenseOn we have a commitment to transparency and thorough quality assurance. We continue to invest in processes that prioritise the security of our customers’ systems and data.

If you have any questions about our QA practices, please don't hesitate to reach out to us.

James Mistry
Previous

What Is a Consolidated Cyber Security Platform and Why You Need One In 2024
Next

Unmasking Microsoft's Mystery: When Anomalous Scans Are Just Business as Usual