Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • Development

    Imperva Advances Autonomous Application Protection Capabilities

    By
    Sean Michael Kerner
    -
    February 22, 2019
    Share
    Facebook
    Twitter
    Linkedin
      Imperva Prevoty

      eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

      Imperva is adding new capabilities to its Runtime Application Self Protection (RASP) technology platform that enables organizations to better protect their workloads.

      The ability to automatically protect code at runtime from threats is the domain of RASP technology. Imperva entered the RASP business via the acquisition of RASP vendor Prevoty in July 2018 and is now expanding the offering with new capabilities and integration into the company’s broader portfolio. The new release is Autonomous Application Protection version 3.10 and integrates features to detect weak cryptography, as well as potential network activity threats.

      “We’re pretty excited about this release just because it fundamentally alters and changes the way that RASP is considered and will be considered by many organizations,” Kunal Anand, CTO of Imperva, told eWEEK. “I think it speaks to the grander vision that we have at Imperva.”

      Anand was the co-founder and CTO of Prevoty prior to acquisition and has now transitioned to become the CTO of Imperva, with responsibilities across the company’s portfolio.

      Network Activity Protection

      RASP technologies in general look to protect code from executing potentially malicious processes. With version 2.10 of Autonomous Application Protection, Imperva is now looking beyond just what an application executes as a process to what an application attempts to connect to at the network level. Anand said Autonomous Application Protection is now looking at HTTP calls that could potentially go anywhere with the new network activity protection feature.

      “So if you have an application that’s communicating with another application, to a microservice, or to a REST API, you now have complete visibility in terms of the line of code where we’re seeing the execution from, what it’s talking to you, what it’s sending and what it’s getting back,” he explained.

      The ability to have network visibility for runtime code is important to defend against emerging forms of attack. By having network activity protection at the code runtime, it’s also possible for an organization to specifically allow applications to only be able to communicate with certain services. Anand said that Prevoty had been working on the network activity protection feature prior to being acquired by Imperva. As part of Imperva, he said that additional development work is underway to link with the company’s broader security intelligence capabilities to further enhance that network activity protection feature in the future.

      Weak Cryptography Protection

      In 2018, Prevoty added a feature that performs dependency analysis with an application. Anand said that his team looked at how customers were using the feature and discovered that it was being used to help identify cryptographic libraries. Over time, different cryptographic libraries are identified as being weaker than others and there is a need for organizations to regularly evaluate what they are using.

      “So what we did was we allowed customers to be able to constrain different kinds of cryptographic algorithms that can and can’t be used,” he said. 

      How It Works

      As opposed to other types of cyber-security technologies, RASP and Autonomous Application Protection can be injected directly into the runtime to protect an application.

      Anand said that Autonomous Application Protection can plug directly into an application server. From a DevOps perspective, the Autonomous Application Protection can be instrumented from a Continuous Integration/Continuous Deployment (CI/CD) system like Jenkins and get directly integrated into the gold master that an organization deploys.

      At a deeper technical level, Anand explained that the process that Imperva uses is known as byte code instrumentation (BCI).

      “The way it works is the agents at application startup will hook the class loader of the application and it’ll actually do injection and byte code instrumentation into the key areas that we care about,” he said.

      After the BCI process, Anand said that an approach that Prevoty developed called LANGSEC (Language Theoretic Security) comes into play.

      “The idea of LANGSEC is to effectively use formal grammar theory to parse payloads before they execute,” Anand said.

      So, for example, Anand explained that before a database query executes, the LANGSEC analysis will occur, enabling analysis and identification of potential risk. He said that the LANSEC approach goes beyond what a pattern-based recognition system can look for, to identify more complex issues.

      “LANGSEC just kind of kicks it up another level in terms of detection capabilities,” Anand said. “So we actually marry the two techniques, which is language analysis plus application context.”

      RASP and WAF

      Imperva has a number of products and services, among them is the company’s Web Application Firewall (WAF) technology. A WAF typically sits in front of applications protecting them against threats delivered over the network. RASP technology, on the other hand, is integrated inside of application code. Anand sees an opportunity for organizations to make use of both approaches to help mitigate risk.

      “A vision that we have is a converged one where we converge application and data security together,” he said.

      Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.

      Sean Michael Kerner
      Sean Michael Kerner is an Internet consultant, strategist, and contributor to several leading IT business web sites.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×