intelligency
Home/Products/ANMAS
Device Layer

ANMAS

AI Network Monitoring & Analysis System

ANMAS is Intelligency's flagship parent brand, encompassing ANMAS-IoT and ANMAS-MASA (Mobile) product lines. Non-intrusive AI dual-engine technology automatically generates ISO-27001 compliance reports.

Product Lineup

Two ANMAS Product Lines

For the two most common device attack surfaces, ANMAS provides dedicated editions — deployable independently or together.

IoT
ANMAS-IoT

IoT Edition

Network security analysis for industrial control, smart buildings, manufacturing IoT, and edge devices. Detects abnormal traffic, unknown protocol abuse, and firmware-layer risks.

M
ANMAS-MASA

Mobile Edition (MASA)

Network packet analysis for iOS, Android, and HarmonyOS smartphones. No app, no USB — find the threats hidden in your phone.

Use Cases

5 Use Cases

Mobile and IoT devices are the most overlooked security gaps today. ANMAS provides tailored detection scenarios for five high-risk roles.

Executives

Confidential conversation & decision data

Government Officials

National-security-grade defense

Business Travel

Overseas connection risk detection

R&D Staff

IP and patent data protection

Routine Check

Periodic device health checks

Core Strengths

Three Core Strengths

100% Non-Intrusive

No app installed on the device, no USB, no settings change. Complete the check with the device in original state — total user privacy protection.

AI Dual-Engine

Cloud LLM matches global threat intelligence in depth; local SLM identifies abnormal packets in real time. Sensitive data never leaves your domain.

ISO-27001 Compliance Reports

Auto-generated reports follow international ISMS format — usable for internal/external audits and compliance filings.

Detection Capabilities

12 Threat Detection Capabilities

Industry-leading coverage of the 12 most common — and most difficult to detect — abnormal network activities on mobile and IoT devices.

Intermittent communication
Voice forwarding
C2 relay
APT slow attack
Mass data upload
Unknown overseas connections
Encrypted channel disguise
DNS tunneling abuse
SIM hijack indicators
Location leak alerts
System API anomalies
Known malware fingerprints
Architecture

AI Dual-Engine・Hybrid Cloud-Local AI Architecture

Combining the breadth of large cloud models with the privacy advantages of local models — the biggest differentiator from competing products.

Cloud Engine

LLM + RAG

Retrieval-augmented large language models match against global threat intelligence to identify novel APT patterns in depth.

FUSION
Local Engine

SLM Local Engine

Lightweight models running locally — sensitive packets never go to the cloud, complying with data sovereignty and privacy regulations.

★ Detailed web SVG architecture diagram (redrawn from ANMAS PDF p.11, including IoT and MASA editions) will be updated at the next release.

Workflow

4-Step Workflow・AI-Generated Report

From packet capture to auditable report output, AI completes the entire workflow without manual intervention.

1

Choose Mode

One-off / Continuous / Travel mode

2

Scan Device

Non-intrusive packet capture

3

AI Analysis

Dual-engine matching and behavior modeling

4

AI Report

Auto-generates ISO compliance report, compared with prior records

★ Hi-res workflow screenshots (from ANMAS PDF p.10–13) will be updated at the next release.

Report Preview

ISO-27001 Compliance Report

Complete, auditable, downloadable — AI-generated outputs become direct evidence of compliance.

Executive Summary

Overall risk score, threat-level distribution, and trend chart compared with previous reports.

Detail Table

Item-by-item anomaly details: source IP, destination, timeline, AI confidence.

Recommended Actions

Specific remediation suggestions for detected risks, mapped to ISO-27001 controls.

Patents & Certifications

Patents and Certifications

ANMAS's core technology is built on multiple granted invention patents and is fully aligned with the ISO-27001 international ISMS standard.

★ TBDPatent number

Method & system for non-intrusive network packet analysis

External packet capture with AI behavior analysis identifies abnormal communications without any app installation (covers IoT and mobile).

★ TBDPatent number

Hybrid cloud-local AI dual-engine security analysis architecture

Hybrid LLM + SLM architecture balances depth of analysis with data sovereignty.

★ TBDPatent number

RAG-based threat intelligence matching method

Application of retrieval-augmented generation to security, improving identification of novel threats.

ISO-27001 Aligned

Compliant with international ISMS standard

AI Algorithm Validation

Third-party AI dual-engine validation

ISO-27017 Cloud Security

Cloud service information security

APPI Compliant

Japan personal information protection

★ Hi-res scans of AI and ISO certificates will be updated before official launch.

FAQ

Frequently Asked Questions

Does ANMAS truly require no app installed on the device?
Yes. ANMAS uses "external packet capture" — sampling device communications via trusted network nodes, then analyzing with AI. No software on the device, no USB, no settings change.
What's the difference between ANMAS-IoT and ANMAS-MASA?
Both share the same AI dual-engine and report standard. The difference is target devices and protocol handling: ANMAS-IoT covers industrial control / IoT (including unknown protocols); ANMAS-MASA covers smartphones (iOS/Android/HarmonyOS).
Will the check see my message contents?
No. ANMAS analyzes "network behavior patterns" (destinations, frequency, packet size, timing), not content. All data is de-identified, complying with APPI and PIPA.
How long does one health check take?
Standard one-off capture takes about 15–30 minutes; AI analysis and report generation about 1–2 hours. Travel mode supports continuous monitoring.
Which devices and systems are supported?
As ANMAS is non-intrusive, it supports any device communicating via IP networks: smartphones (iOS, Android, HarmonyOS), IoT and ICS (including major industrial protocols), and edge computing nodes.
What can I do when an anomaly is detected?
The report provides specific recommendations (isolate, wipe, deep inspect, etc.) for each anomaly. We also offer incident response consulting for high-risk events.
How is ANMAS different from MDM?
MDM focuses on "management" (policy, apps, remote control) and requires an agent on the device. ANMAS focuses on "detection" (identifying abnormal communications) and requires no installation. The two complement each other.

Ready to Give Your Devices a Full Health Check?

Get in touch — our consultant will arrange the ANMAS assessment and answer any compliance questions you have.

Contact Us