MENLO PARK, Calif.--(BUSINESS WIRE)--Prevoty, Inc., a leader in runtime application security monitoring and protection, today provided a sneak peek at their technology innovation — LANGSEC powering Runtime Application Self-Protection (RASP) solutions.
Security has not changed much in the last 10 years — relying on signatures, heuristics and dataflow analysis. Enterprises are challenged to constantly tune these traditional solutions as these known-attack lists and rules are out-of-date as soon as they are created. From a hacker’s perspective, it is easy to bypass these known security mechanisms as a finite number of exploits can be turned into an infinite number of patterns. In a DevSecOps world, applications are being added to production multiple times a day. Statistically significant heuristics just do not exist and signatures cannot keep up for legacy applications as processing cycles are wasted without zero-day attack protection. According to a recent study by the Ponemon Institute, one in two enterprises need better application security — demonstrating the reality of the problem.
LANGSEC is different. It is easy to implement at runtime, creates few false positives or false negatives, and works at very high performance, up to 30X faster than traditional approaches. Prevoty is the first to bring academic research on LANGSEC theories to market.
Prevoty’s LANGSEC-based RASP solution uses plug-ins to inspect application activity at runtime and calls the security engine for payload analysis. The engine then uses patented LANGSEC and data analysis techniques to accurately identify malicious behavior. If the payload is malicious, alerts are issued to log files and any configured SIEMs. If protection mode is enabled, the payload is then neutralized and secured payloads are instantly sent back to the application. This seamless and easy LANGSEC-based RASP solution allows enterprises to protect both live and in-production apps in real-time.
“Years of innovation based on a new LANGSEC approach for securing your data and/or assets is now packaged into a simple AppSec product,” said Kunal Anand, co-founder and CTO of Prevoty and finalist for the RSA 2016 Innovation Sandbox Contest Award. “How far we can take this technology is limitless.”
“Differentiation is highly uncommon these days in the security world. Seeing what Prevoty can do makes both customers and investors excited,” said Roger Thornton, Prevoty board member and founder and former CTO of HP Fortify. “Prevoty’s new LANGSEC paradigm for securing applications solves many of today’s business issues and its use as a next-gen technology is limitless across any security ecosystem.”
Prevoty was named one of 10 finalists for RSA 2016 Innovation Sandbox Contest, which is dedicated to encouraging out-of-the-box ideas and the exploration of new technologies that have the potential to transform the information security industry. Winners will be announced on Monday, Feb. 29, 2016.
Come visit Prevoty during RSA 2016 booth #2717 where you can see Prevoty’s LANGSEC solution in action.
Prevoty is dedicated to securing enterprises and the users they serve by monitoring and protecting the applications that are the heart of modern business. By using a LANGSEC-based approach to accurately analyze attacks from inside production applications, Prevoty’s products provide real-time application security intelligence and RASP (Runtime Application Self-Protection). These capabilities enable Global 2000 enterprises to dramatically improve remediation of vulnerabilities, enabling security and development teams to work together more effectively, even with agile release cycles.
Prevoty was founded in 2013 and is headquartered in Menlo Park, California. For more information on the company's application security solutions, go to prevoty.com or follow @Prevoty on Twitter.