Waratek Securing Red Hat JBoss from the Inside Out
-
Upload
waratek-ltd -
Category
Software
-
view
108 -
download
1
Transcript of Waratek Securing Red Hat JBoss from the Inside Out
Network FirewallsGreat first-line defense, but no protection once an attacker is inside the network
Web App FirewallsGenerates a high volume of errors, often blocks legit transactions, and is vulnerable to unknown and unpatched attacks; slows app and network performance; causes problems, but cannot fix app flaws
RASP by virtualizationProtects current and legacy apps from known and unknown attacks; zero error rate and does not slow the app or network; easy to install and operate
Scanners / MonitorsCan only detect known attacks and code flaws; not designed to repair or protect applications
Runtime Application Self-Protection (RASP)
The next generation of application security that solves the issues caused by network and web app firewalls and other app security tools. Waratek’s RASP solutions are highly accurate, easy to install, simple to operate, and do not slow network or application performance.
Network & Application Security TodayNext Gen
App Security
What is RASP& why is it important to me?
Runtime Application Self-protection (RASP) – a term coined by Gartner - is an application security technology built into or linked to an application or application runtime environment. It is capable of controlling application execution while detecting and preventing real-time attacks.
Without RASP, external malicious apps can intercept the execution of a genuine application at runtime and modify it for nefarious activities.
“Modern security fails to test and protect all apps. Therefore, apps must be capable of security self-testing, self-diagnostics and self-protection. It should be a CISO top priority.”
Out of more than 30 technologies reviewed, RASP is the only app security technology listed as “transformational” in Gartner’s 2015 Hype Cycle.
Waratek’s & Red Hat solutions complement each other
Security Hardening Operations Efficiency
Ansible / Azure
Satellite
Waratek isaninnovativeRuntimeApplicationSelf-Protection(RASP) technology thatusessecure,virtualcontainerstoprotectJavaapplicationsfromknownandunknownriskswithoutnegativelyimpactingperformance.Waratek hasreceivedtenindustryawards,including the2015RSAConference’sInnovationSandboxAward.
Using Red Hat Satellite, organizations can deliver secured application stacks across their entire estate. Through the power of Waratek’s RASP solution, businesses are protected from the most severe known and unknown software vulnerabilities.
Waratek’s unique approach to application security means that in addition to the business layer of your service having deep protection, the full application stack is also protected for current and legacy Java applications.
“Security and Innovation go together” – RedHat.com
Runtime Application Self-Protection provided by Waratek and delivered by Red Hat
Waratek +Red Hat = Triple the Defense
Security Hardening The Waratek security plugin hardens legacy and current Java Runtime, the JBoss application server and the Application itself by adding security features and benefits across the full application stack, including:
Defense Against Attacks in Business Logic
Defense Against Attacks in Full Software Stack
Protects Vulnerable Legacy Java Applications
Generates Zero False Positives
No Application Code Changes Required
No Prior Knowledge of Application Behavior Required
No Additional Sensors or Other Hardware Devices
Detailed Application Level Forensic Data
More secure Java runtimeSecurity Hardened application server(s)More secure application(s)
Waratek + Red Hat make life easier for DevOps & Security Pros
As a licensed developer of Oracle’s Java and Microsoft’s Azure, Waratek’ssecurity features work in concert with RedHat’s Satellite and Ansible for Azure solutions.
With Satellite, Waratek’s JVM security solutions and updates can be easily deployed across an enterprise.
With the Ansible for Azure solution, Waratek’s security solutions can be deployed in a cloud environment.
Waratek solutions require no tuning, code changes, or appliances and have minimal performance impact while producing zero false positives –helping to ease the stress of deploying a new security solution.
Operations Efficiency
Ansible / Azure
Satellite