Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Way to Protect The Smartest Way to Protect Websites and Web Apps from Attacks.

Published byRoger Sullivan Modified over 9 years ago

Similar presentations

Presentation on theme: "The Way to Protect The Smartest Way to Protect Websites and Web Apps from Attacks."— Presentation transcript:

1 The Way to Protect The Smartest Way to Protect Websites and Web Apps from Attacks

2 Inconvenient Statistics Network Perimeter App Server Database of ALL threats are at the Web application layer. Gartner 70% of organizations have been hacked in the past two years through insecure Web apps. 73% Ponemon Institute

3 Hacker Threats Targeted Scans Advanced Persistent Threat (APT) Targets a specific site for any vulnerability. Script loaded onto a bot network to carry out attack. JANJUNEDEC Sophisticated, targeted attack (APT). Low and slow to avoid detection. Library Attacks Script run against multiple sites seeking a specific vulnerability. IP Scan Script Kiddie Generic scripts and tools against one site. Scripts & Tool Exploits Targeted Scan BotnetBotnet Human Hacker

4 The Cost of an Attack Theft RevenueReputation Sony Stolen Records | 100M Sony Direct Costs | $171M 28 day network closure Lost customers Security improvements Sony Lawsuits| $1-2B Ponemon Institute| Average breach costs $214 per record stolen

5 Deception Points - detect threats without false positives. Track individual devices Understand attacker’s capabilities and intent Adaptive responses, including block, warn and deceive. The Mykonos Advantage Deception-based Security Detect Track Profile Respond

6 Detection by Deception App Server Client Server Configuration Network Perimeter Database Firewall Query String Parameters Tar Traps Hidden Input Fields

7 Track Attackers Beyond the IP Track Software and Script Attacks Fingerprinting HTTP communications. Track Browser Attacks Persistent Token Capacity to persist in all browsers including various privacy control features. Track IP Address

8 Attacker threat level Smart Profile of Attacker Incident history Every attacker assigned a name

9 Respond and Deceive All responses are available for any type of threat. Highlighted responses are most appropriate for each type of threat.

10 Security Administration SMTP alerting Reporting (Pdf, HTML) CLI for exporting data into SIEM tool Web-based console Real-time On-demand threat information

11 Unified Protection Across Platforms App ServerDatabase Internal Virtualized Cloud Connective Tissue

12 Case Study & Customers “Within 20 minutes, ….we were looking at the activity taking place on our web applications.” “10% of our traffic was…malicious.” Keir Asher Senior Technical Analyst Brown Printing

13 2010 Cool Vendor Application Security “The smartest buy of the year for any organization with an online presence.” 1 st Place Winner, Security Innovators Throwdown 2010 SINET 16 Security Innovator 2011 1 st Place Information Security Wall Street Journal Technology Innovation Awards 2011

Download ppt "The Way to Protect The Smartest Way to Protect Websites and Web Apps from Attacks."

Similar presentations

ETHICAL HACKING A LICENCE TO HACK

ETHICAL HACKING A LICENCE TO HACK
 The Citrix Application Firewall prevents security breaches, data loss, and possible unauthorized modifications to Web sites that access sensitive business.

 The Citrix Application Firewall prevents security breaches, data loss, and possible unauthorized modifications to Web sites that access sensitive business.
Next Generation Endpoint Security Jason Brown Enterprise Solution Architect McAfee May 23, 2013.

Next Generation Endpoint Security Jason Brown Enterprise Solution Architect McAfee May 23, 2013.
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
Cloud Computing Part #3 Zigmunds Buliņš, Mg. sc. ing 1.

Cloud Computing Part #3 Zigmunds Buliņš, Mg. sc. ing 1.
By Ashlee Parton, Kimmy McCoy, & Labdhi Shah

By Ashlee Parton, Kimmy McCoy, & Labdhi Shah
AVG Internet Security 7.5 Product presentation.

AVG Internet Security 7.5 Product presentation.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
1 Cost-Effective Strategies for Countering Security Threats: IPSEC, SSLi and DDoS Mitigation Bruce Hembree, Senior Systems Engineer A10 Networks.

1 Cost-Effective Strategies for Countering Security Threats: IPSEC, SSLi and DDoS Mitigation Bruce Hembree, Senior Systems Engineer A10 Networks.
Department Of Computer Engineering

Department Of Computer Engineering
Internet Relay Chat Chandrea Dungy Derek Garrett #29.

Internet Relay Chat Chandrea Dungy Derek Garrett #29.
 Chirita Ionel  Application Security  OWASP Chapter board member.

 Chirita Ionel  Application Security  OWASP Chapter board member.
Web Application Security Assessment and Vulnerability Assessment.

Web Application Security Assessment and Vulnerability Assessment.
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
W3af LUCA ALEXANDRA ADELA – MISS 1. w3af  Web Application Attack and Audit Framework  Secures web applications by finding and exploiting web application.

W3af LUCA ALEXANDRA ADELA – MISS 1. w3af  Web Application Attack and Audit Framework  Secures web applications by finding and exploiting web application.
CS426Fall 2010/Lecture 361 Computer Security CS 426 Lecture 36 Perimeter Defense and Firewalls.

CS426Fall 2010/Lecture 361 Computer Security CS 426 Lecture 36 Perimeter Defense and Firewalls.
IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.

IT-security in the Ubiquitous Computing World Chris Kuo, CISSP, CISA Acer eDC (e-Enabling Data Center) Acer Inc. 2007/3/27.
Security Imperatives in a New Workplace Partnering to Protect Digital Information in the 21st Century Presented by Michael Ferris, Alaska Enterprise Solutions.

Security Imperatives in a New Workplace Partnering to Protect Digital Information in the 21st Century Presented by Michael Ferris, Alaska Enterprise Solutions.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.
Penetration Testing Security Analysis and Advanced Tools: Snort.

Penetration Testing Security Analysis and Advanced Tools: Snort.

Similar presentations

Ads by Google