Trapezoid FIVE

Trapezoid FIVE is a firmware security and integrity monitoring platform designed to detect indicators of compromise (IoCs) at the firmware and hardware level, below the operating system. The platform captures integrity data from network-connected devices to establish behavioral baselines. Each time a device is queried, an evidence record is created that documents the device's state at that point in time. This data is tracked over time to model individual device behavior and detect deviations. Analysis is organized across four categories called the Trapezoid Quadrants of Integrity: - Hardware: Detects unauthorized physical changes to devices - Software (Firmware): Validates firmware integrity against manufacturer measurements - Configuration: Identifies firmware-level attacks detectable only through configuration changes - Operational Metrics: Monitors anomalies such as power or temperature spikes as potential early warning indicators The platform continuously checks device data against a vulnerability research database that includes OEM known-good values, the National Vulnerability Database (NVD), independent research sources, and customer-provided research. Trapezoid FIVE is positioned for incident response use cases, providing forensic investigation capabilities below the OS layer. It generates alerts when anomalous behavior is detected in any of the four integrity quadrants, enabling remediation decisions based on real-time device integrity data. The platform is intended for use across diverse device types, including servers, routers, and other networked hardware, and does not rely on device classification or taxonomy-based approaches.