RASP via Fortify Application Defender

Sometimes you need to protect it now and remediate later. Protect your enterprise from some of the most damaging exploits like the OWASP Top 10.

(PDF 127 KB)

In this HPE newsletter, featured Gartner research says RASP is “transformational” and, they recommend “that Gartner clients evaluate emerging vendors and plan RASP adoption when RASP's level of maturity meets their policies.”

HPE newsletter

Application Defender 개요

  • 언제든 발생할 수 있는 취약점

    Vulnerabilities

    애플리케이션 보안 테스트는 특히 예방에 효과적이어서 알려진 취약점이 있는 프로덕션 환경으로 애플리케이션이 이동하지 않도록 하는 데 유용합니다. 그러나 아무리 빈틈없는 애플리케이션 보안 프로그램을 갖춘 조직이라도 모든 애플리케이션을 스캔하고 수정하는 것은 실용적이지 않을 수 있습니다. 그러는 동안에도 공격자들은 개발 과정에서 예상하지 못했던 새로운 위협을 계속 가합니다.

  • 네트워크 확인 이상의 보안 필요

    Network code view

    기존 위협과 새로운 위협에 대처하기 위해 코드를 변경하려면 몇 주 혹은 몇 달씩 시간이 소요됩니다. 코드를 변경하는 동안에는 보완 관리가 필요합니다.

    웹 애플리케이션 방화벽(WAF)과 같은 네트워크 보안은 많이 이용하는 방법이지만 애플리케이션 자체 내 가시성이 필요한 공격은 놓칠 수 있습니다.

  • 안에서부터 확인하고 방어하는 전략 필요

    Defense

    애플리케이션을 활용하면 규칙을 학습 또는 조정하거나 코드를 재작성할 필요 없이 애플리케이션 동작을 로깅하고 공격을 정확하게 감지 및 차단할 수 있습니다. App Defender는 코드 라인 취약성 정보를 토대로 개선 시간을 단축하는 동시에 취약한 부분을 보호합니다.

Application Defender는 앱 보안 업계 리더인 Fortify의 RASP 솔루션입니다.

Proven technology

First to market (2007) with App Defender agent instrumentation technology that is also used in Fortify WebInspect and other products

Proven vendor

Experience and security research from a market leader

Visionary

Part of Fortify’s end-to-end application security capabilities

Application Defender Benefits

간편성:

  • 세 단계 배포를 통해 신속하고 쉽게 설치함으로써 몇 분 이내에 보호를 시작
  • 사전 구성된 취약성 감지 규칙으로 즉시 사용 가능한 보호
  • 사내 또는 클라우드에서 효율적인 관리, 보고, 확장

 

가시성:

  • 보안 문제에 대한 코드 줄 수준의 상세 정보로 수정 시간 단축
  • 대화형 대시보드와 실시간 경고로 유용한 정보 제공
  • 실제 공격에 대한 지속적인 보안 모니터링을 통해 보호 또는 수정을 위한 취약성 파악
  • SOC를 활성화하는 유연한 출력으로 애플리케이션 보안 로그 및 소프트웨어 취약성 악용 사례 확인
  • 위험 우선순위 지정 및 조직 전반에 걸친 커뮤니케이션을 위한 구성 가능한 보고 기능

 

보호:

  • 클릭 한 번으로 애플리케이션의 컨텍스트를 사용하여 범주별 또는 세부 사항별로 공격이나 보안 침해 사건 차단
  • 애플리케이션 로직과 데이터 흐름에 대한 실시간 분석을 제공하는 RASP(런타임 애플리케이션 셀프 보호)로 네트워크 보안에서 보이지 않는 위협 파악
  • 실제 공격과 정상적인 요청을 정확하게 구분하여 보호 정확성을 대폭 향상하고 오탐 확률 감소

What can Fortify Application Defender, our Runtime Application Self-Protection (RASP) Solution, Do for you?

많은 Application Defender 고객들에게 공통적인 요소는 시간을 구매하고 통제력을 확보해야 한다는 점입니다. 일종의 보완 컨트롤인 Application Defender는 취약성을 보호하는 데 도움이 될 뿐 아니라 장기간에 걸친 최상의 해결 시기와 방법을 결정할 수 있습니다. 경우에 따라 이 가상 패치는 영구적으로 사용됩니다.

HPE 고객들이 어떻게 RASP를 적용하고 있는지 확인해 보십시오

To Buy Time

A U.S. Pharmaceutical company found more vulnerabilities than they had resources to fix. They use App Defender to defend those vulns as a virtual patch.

For Rapid Resolution

A European cloud-based software company had customers anxious for resolution of a critical vulnerability. To quickly protect the vulnerability across all 60 instances, they deployed App Defender and had their customers immediately protected.

To Broaden Testing

A European major manufacturer’s backlog of vulnerabilities already identified was preventing them from testing additional applications. To protect the vulnerabilities found in Fortify on Demand, with a click of a button, App Defender monitors and protects those vulnerabilities enabling them to scan and test more applications, further reducing their risk.

For Compliance Audit

A U.S. Company had failed a compliance audit and was given 30 days to resolve the issue. Remediation was estimated to require several months to fix. App Defender’s use as a compensating control relieved the immediate audit issue.

For SOC Visibility

A U.S. services company uses App Defender to immediately and consistently see application and user activity and potential exploits, at enterprise scale, without creating custom log parsers for apps not instrumented to create logs.

To Enable DevOps Speed

A U.S. service company uses App Defender to protect vulnerabilities found during rapid DevOps sprints. This compensating control enables DevOps speed while managing risk.

Where RASP fits

Monitor and protect applications, after pre-production security testing, to identify and stop actual exploits.

(PDF 3.21 MB)

 

 

 

Why RASP if I have a WAF?

Context-sensitive instrumentation can distinguish a potential exploit from a successful one so you can confidently identify and stop attacks. See why you need RASP in addition to – or instead of – a WAF.

 

software/application-defender | benefits | how is fortify

Fortify Application Defender가 다른 RASP 솔루션보다 더 나은 이유는 무엇일까요?

Powerful

  • 29 vulnerability categories and 60 logging categories
  • Context-sensitive for fewer false positives and greater instrumentation coverage

Integrates into your workflow

  • Send logging and exploit data to any SIEM or log manager
  • Integrated with Fortify on Demand – protect vulnerabilities with a click
  • Build app sec into your DevOps toolchain via RESTful API’s and Swagger integration

Flexible

  • On-premise or SaaS
  • Point-wise protections and suppressions for surgical protection or white-listing

Architected for success (proven architecture)

  • Performance that does not disrupt your application’s purpose
  • Dial-up or dial-down the degree of inspection.
  • Containers simplify enterprise-wide deployment

Try Application Defender Free

JAVA 또는 .NET 애플리케이션을 보호하십시오.

무료 평가판

Resources

Brochure

 

Build application security into the entire SDLC

 

(PDF 3.21 MB)

Article

 

Are You Addressing Your Greatest Vulnerability?

 

Data sheet

 

Application Defender: An application self-protection solution

 

(PDF 127 KB)

Infographic

 

Build Security into DevOps

 

(PDF 476 KB)

Documentation

 

Application Self-Protection Use Cases

 

White paper

 

Application Defender performance metrics for Java

 

(PDF 718 KB)

Related Products, Solutions and Services

Application Security

Fortify Application Security

Static and dynamic application security testing to find and fix vulnerabilities before they can be exploited.

SIEM

ArcSight ESM

Prioritize security events, so you can protect your business.

Mobile Security

Mobile App Security

Secure your mobile stack from device to network communications to server.

Enterprise Security Consulting

Security Consulting Services

Consulting services to help you get most out of your investment in HPE security solutions.

Enterprise Security Training

Enterprise Security University

Expert instruction to optimize your security operations and your security investments.

Engage with our Application Security Community

Protect Your Assets Blog

Get IT security insights to protect your business ahead of attackers anywhere in the world.

Security Research Blog

Get innovative research, observations and updates to help you proactively identify threats and manage risk.

Protect724 Community

Join the HPE Security community to share, search, collaborate for solutions and gain feedback.

HPE Security on Twitter

Get the latest tweets on hybrid environment risks and defending against advanced threats.

HPE Security on LinkedIn

Connect with experts and discuss the latest info on new threats and risk in hybrid environments.

HPE Software on Facebook

Join with peers and experts to discuss how to make your HPE software work for you.

HPE Software on Google+

Discuss the latest on how to make your enterprise applications and information work for you.

HPE Business Insights

Gain strategic insights from IT leaders who help others define, measure and achieve better IT performances.