Internet Wire – October 30, 2002

WebCohort, a leading provider of web application and database security software, today announced the availability of SecureSphere 1.2, a revolutionary in-depth security solution for protecting the Enterprise Application Sphere from application-level attacks. SecureSphere 1.2 provides full transparency, easy adaptation and accurate detection.

The Enterprise Application Sphere consists of multiple web-enabled enterprise applications used by an extended community of customers, providers, partners and employees. These applications are implemented on multiple servers, from web servers to application servers and databases, and are interconnected by application-level protocols, such as HTTP and SQL. Databases are the core of the Enterprise Application Sphere, consisting of the organization’s most valuable information. Web and application servers provide business logic and presentation layer functionalities. Utilizing inevitable bugs in the application code itself and its underlying logic, hackers are increasingly quick to devise well-planned Application Sphere attacks. These attacks, which focus on web applications and databases, are the fastest growing area of “new attacks”. According to IDC, enterprises have spent billions on network security, yet Web sites, servers, and applications continue to be defaced and penetrated. Web-site defacements alone logged over 22,000 successful vandalism attacks last year. According to an Evans Data Corp. survey, 27 percent of banking and financial services databases in the U.S. and Canada were breached last year.

WebCohort SecureSphere 1.2 is an anomaly intrusion prevention system for the Enterprise Application Sphere. It automatically learns the normal behavior of the application by profiling its HTTP and SQL communication. While in protect mode, any deviation from the normal behavior profiles is carefully analyzed using the unique Stateful 4Layer Detection architecture. The Stateful 4Layer Detection architecture accurately identifies true malicious attacks and filters out false positive scenarios. Once an attack has been detected, SecureSphere 1.2 generates an alert and takes preventive measures to block the attack and its sources, based on the user’s security policy.

SecureSphere 1.2 is the first non-invasive application and database security solution. It uses transparent network sensors with no in-line point of failure or performance bottleneck, as opposed to host agents and proxy gateways solutions.

For added security, SecureSphere 1.2 features an optional, rich signature-based mechanism. Signatures can be used as an additional security mechanism for anomaly detection. SecureSphere includes a comprehensive signature database for web and database attacks.

“Our vision is simple: Secure the Enterprise Application Sphere while protecting the Enterprise’s growing investment in it”, said Shlomo Kramer, Chief Executive Officer at WebCohort. “We are committed to deliver products that not only provide the highest level of security, but are also scalable, easy to deploy and easy to use. Designed to answer the operational needs of the Enterprise, SecureSphere 1.2 is completely transparent, adaptable and scalable. Easily deployed, the product does not require any changes to the applications or the underlying infrastructure. Featuring an innovative flexible architecture, the product can easily adjust to the dynamic changes in the Enterprise Application Sphere while maintaining the highest level of security.”

Availability
SecureSphere 1.2 is available immediately. For more information, including pricing, please contact WebCohort.

About Imperva
Imperva is the leader in application data security and compliance. Leading enterprise and government organizations worldwide rely on Imperva to prevent data theft and abuse, and ensure data integrity. The company’s SecureSphere products provide data governance and protection solutions that monitor, audit and secure business applications and databases. For more information, visit www.imperva.com

# # #

Imperva and SecureSphere are trademarks of Imperva, Inc. All other brand or product names are trademarks or registered trademarks of their respective holders.

Editorial Contact
Marc Gendron
(781) 237-0341
marc@mqpr.net