This doesn’t sound any different than what most host based AV already do. The novel idea is implementing it in on the storage array directly in a way that doesn’t hose performance. That means instead of needing 100% coverage of all clients to detect/ prevent ransomware encrypting your network storage, the storage array can detect it and presumably reject the compromised client.