<iframe src="//www.googletagmanager.com/ns.html?id=GTM-KXSCJR" height="0" width="0" style="display:none;visibility:hidden">

Security intelligence just got Splunk’d

Julien Bellanger | Aug 10, 2015

Ever since we announced Prevoty’s application security monitoring capability, we’ve had dozens of customers ask us about integration with various SIEM’s. Our ability to provide real-time attack intelligence from inside production applications is an exciting development for application security professionals and being able to correlate that data with other security information is extremely valuable.

Continue reading

Topics: Feature Updates, Partnerships & Integrations

A new, free cryptography service for developers

Kunal Anand | Feb 18, 2015

A recent Wall Street Journal article outlines that health insurer Anthem did not encrypt its data and that this was one of the major factors resulting in the very public theft of masses of personal identifiable information (PII).

There has been some discussion around the method of penetration with stolen credentials meaning that the value of encryption would have been nullified.  Without knowing the details, I don’t feel qualified to reach a conclusion on that but it seems hard to fathom that a single user would have had access to the keys to decrypt everything.

Continue reading

Topics: Feature Updates

New Feature: Seven More Typed Input Validations

Kunal Anand | Sep 17, 2014


Based on the positive feedback we've received from our customers, the Prevoty engineering team has added seven new typed input validations:
 
  • Credit Card numbers
  • IPv6 addresses (in addition to the previously released IPv4 validation)
  • MAC addresses
  • UUID (MAC address + DCE Security)
  • UUID Version 3 (MD5 hash)
  • UUID Version 4 (random)
  • UUID Version 5 (SHA-1 hash)
Continue reading

Topics: Feature Updates

New Feature: Typed Input Validation for Form Fields

Kunal Anand | Jul 31, 2014

When we started Prevoty, one of our main goals was to give developers a systemic approach for creating and managing secure applications. Our product roadmap began with the ambition of preventing the most difficult OWASP attacks and over the last 18 months, our engineering team has created novel algorithms and technologies to prevent XSS, SQLi and CSRF. On top of that, our team has developed an on-premise version of the Prevoty engine while continuing to support nearly a dozen different SDKs + frameworks (servlet filters and HTTP modules). We've covered a lot of ground in such a short period of time!

Continue reading

Topics: Application Security, Prevoty Technology, Feature Updates