<iframe src="//www.googletagmanager.com/ns.html?id=GTM-KXSCJR" height="0" width="0" style="display:none;visibility:hidden">

Using Runtime Visibility to Align Application Security with DevOps

Kunal Anand | Apr 5, 2017

 

Download Prevoty's Guide to RASP now!

Continue reading

Topics: Application Security, RASP, Signatures, Language Security, LANGSEC, Runtime Application Self-Protection, Runtime Application Security, information security, signatureless, no signatures, prevoty

What Questions Would a CISO Ask About Prevoty Runtime Security?

Audrey Sunu | Sep 12, 2016

Dr. Edward G. Amoroso, former CISO
of AT&T and now founding CEO of TAG Cyber, is dedicated to advancing the practice of information security and make best-in-class knowledge available to the community of security leaders. In this excerpt from his new three-part report, he interviews Julien Bellanger, CEO and Co-Founder of Prevoty about runtime technologies and the future of application security.

Continue reading

Topics: Application Security, RASP, Industry commentary, AppSec, Runtime Application Self-Protection, Runtime Application Security, TAG Cyber

RASP: The Proof is in the Pudding

Dr. Edward G. Amoroso | Sep 8, 2016

ed2.jpegThis guest post was written by Dr. Edward G. Amoroso, Former SVP and CSO of AT&T; Current CEO of TAG Cyber, LLC. 

Continue reading

Topics: RASP, Industry commentary, Guest Contributions, Runtime Application Security, TAG Cyber

IANS Helps You Get A Grasp On RASP

Audrey Sunu | Jul 20, 2016

The most frequent question we get about RASP is whether or not it is 'enterprise-grade'. With so much noise and fanfare in the cybersecurity industry, it’s hard to distinguish true, scalable innovation from the rest. New technologies undergo some growing pains and are often met with a healthy dose of skepticism before they are adopted as the norm. 

Prominent information security advisory and consulting firm IANS Research took on the challenge of evaluating the efficacy of Runtime Application Self-Protection (RASP) and recently released a research report called Getting A Grasp On RASP. The report, developed by IANS faculty Paul Asadoorian, provides a much-needed overview of the burgeoning space and parses the pros and cons of these new tools. 

Continue reading

Topics: Application Security, RASP, Runtime Application Self-Protection, Runtime Application Security, IANS Research

The Future of Application Security Depends On Our Infrastructure

Julien Bellanger | Jun 13, 2016

To say that the future of application security depends on our infrastructure may sound controversial -- especially coming from a runtime application security startup founder.

Don’t get me wrong. Our vision is still the same: application security has to be done at the application layer, and more so than ever, that security must be embedded in the application.

Continue reading

Topics: Application Security, RASP, Language Security, LANGSEC, AppSec, Runtime Application Self-Protection, Vulnerability remediation, Runtime Application Security, Infrastructure

Prevoty Turns Three Years Old and Gets a Web Lift

Julien Bellanger | May 9, 2016

Over the last three years, we went from brainstorming crazy ideas at a kitchen table to creating a new category for securing enterprises applications at runtime. We've captured our top 3 learnings in this blog post and have made some exciting new additions to our website. 

Continue reading

Topics: Company News, RASP, Prevoty Technology, DevOps, Language Security, LANGSEC, Runtime Application Self-Protection, Vulnerability remediation, DevSecOps, Runtime Application Security

Why RASP is the Third Pillar of Application Security

Arpit Joshipura | Apr 12, 2016

According to recent research we conducted with the Ponemon Institute, one in two enterprises today admit that they need better application security — demonstrating both the scope and the reality of the problem.

Continue reading

Topics: RASP, Tech Zone, SAST, LANGSEC, DAST, Pattern matching, Runtime Application Self-Protection, Dynamic Application Security Testing, Runtime Application Security, Static Application Security Testing

Why LANGSEC for Runtime Application Security? Because Patterns Can't Keep Up

Arpit Joshipura | Mar 10, 2016

Age-old security is broken because it uses antique techniques 

Throughout the past ten years, security methods have remained relatively unchanged. These methods rely solely on signatures, heuristics and dataflow analysis and are focused on defending the networks. The problem is that hackers have learned how to work around predefined network controls. 

The majority of today's firewalls still have to run thousands of patterns to match for known attacks, and false positives and false negatives run high -- making it difficult to determine what is normal. These traditional methods rely on code that is constantly changing. The thing you’re trying to detect is changing because the application itself is always changing, causing solutions to be out of date as soon as they are created.

Continue reading

Topics: WAFs, Startups, Application Security, RASP, Prevoty Technology, Application Security Monitoring, Signatures, Language Security, Innovation, LANGSEC, Heuristics, AppSec, Pattern matching, Cross-site Scripting, Command Injection, Runtime Application Self-Protection, Data Flow Analysis, Vulnerability remediation, SQL Injections, CSRF

Six Application Security Predictions for 2016

Arpit Joshipura | Jan 22, 2016

This post originally appeared on CSO Online.

2016 is upon us and it is time to review what we think will happen in the world of application security in this fast-paced world. Security is always evolving just as attacks, hacks and vulnerabilities shift and as new technologies enter the landscape. Security must adapt in order to protect businesses, consumers and treasured data. Can today’s security practices achieve security assurances, rooted in sound computability theory? We believe so.

Continue reading

Topics: Application Security, RASP, Industry commentary, DevOps, Signatures

Hear from the Founders: The WhiteHat Security & Prevoty Partnership [VIDEO]

Audrey Sunu | Jan 19, 2016

As you may have heard, Prevoty and WhiteHat Security have combined forces to offer up a first-in-kind application security testing and automatic runtime protection capability. Recently, we had the opportunity to ask the founders directly: why create a joint offering? How does this shape the way we secure our applications?

Continue reading

Topics: Company News, Application Security, RASP, Partnerships & Integrations, SAST, DAST

Subscribe to Email Updates