SecureSphere to Provide Unified, Automated Protection Against Web Application Attack, Database Breach and Worm Infection

Download the BCBST case study (158KB PDF)

FOSTER CITY, CA – April 4, 2005 – Imperva, Inc., the developer of the world’s first Dynamic Profiling Firewall, today announced that BlueCross BlueShield of Tennessee (BCBST) is using SecureSphere Dynamic Profiling Firewall to secure its Web applications and databases from internal and external threats. SecureSphere provides protection for the applications and databases housing sensitive member information, supporting BCBST’s commitment to safeguarding the private health information of their members and associates, as well as helping BCBST to demonstrate appropriate compliance to privacy and security regulations.

SecureSphere is currently protecting BCBST’s entire online presence (www.bcbst.com), which includes portals for members, employees, providers and brokers. SecureSphere is also protecting a variety of internal and external applications as well as database systems from a variety of vendors.

“Web and database communication has become integrated into nearly every BCBST production system,” said Chris Levan, CIO, BlueCross BlueShield of Tennessee, “Protecting BCBST’s Web applications and databases is a key element in safeguarding the private health information of our members and partners.”

Complete Solution

The SecureSphere Dynamic Profiling Firewall provides total application security by protecting against the key threats facing enterprise applications and databases, including:

  • Web application attacks such as SQL Injection, parameter tampering, cookie poisoning.
  • Direct database breaches such as data theft by unauthorized employees.
  • Worm infections on critical servers, including known infrastructure attacks and Zero Day worms.

“Imperva’s customers like BCBST understand that a solution for application security must address more that a single protocol or attack vector,” said Alan Norquist, vice president of marketing and business development for Imperva. “Imperva built SecureSphere to address the need for total application security by including the scalability and holistic protection needed to support enterprise-wide deployments.”

Low Cost of Ownership

“Imperva’s SecureSphere gives us the ability to address possible security vulnerabilities without being heavily dependent upon our vendors’ timeframe and resources,” said Sharon Black, Sr. Manager of Information Security, BlueCross BlueShield of Tennessee. “BCBST now spends less time on issues such as software changes and can direct more energy on protecting our members’ data and company information.”

SecureSphere cuts operational costs because deployment requires no changes to existing applications and infrastructure and SecureSphere operations requires no on-going manual tuning. This automation is due to Imperva’s Dynamic Profiling technology that can automatically create a profile of the application’s structure and dynamics by examining application and database traffic in the production environment. This application profile is used to identify and block attacks while also recognizing valid application changes and automatically incorporating them into the application profile.

About BlueCross

BlueCross BlueShield of Tennessee is the state’s oldest and largest not-for-profit health plan, serving more than 2.6 million Tennesseans. Founded in 1945, the Chattanooga-based company is focused on financing affordable health care coverage and providing peace of mind for all Tennesseans. BlueCross serves its members by delivering quality health care products, services and information. For more information on BlueCross BlueShield of Tennessee, visit the company’s Web site at www.bcbst.com.

About Imperva

Imperva is the leader in application data security and compliance. Leading enterprise and government organizations worldwide rely on Imperva to prevent data theft and abuse, and ensure data integrity. The company’s SecureSphere products provide data governance and protection solutions that monitor, audit and secure business applications and databases. For more information, visit www.imperva.com

# # #

Imperva and SecureSphere are trademarks of Imperva, Inc. All other brand or product names are trademarks or registered trademarks of their respective holders.

Editorial Contact

Marc Gendron
(781) 237-0341
marc@mqpr.net