| The name of the base system (platform): | Check Point CloudGuard |
| Developers: | Check Point Software Technologies |
| Date of the premiere of the system: | 2021/03/10 |
| Technology: | IB - Firewalls |
Main article: Firewall
2021: Анонс Check Point CloudGuard Application Security
On March 10, 2021, Check Point Software Technologies, a provider of cybersecurity solutions, launched CloudGuard Application Security (AppSec), a fully automated web application protection and API solution that expands the capabilities of the CloudGuard Native Security unified platform . It will help businesses protect any cloud application from both known threats and zero-day attacks. The product is intended for companies that use Kubernetes, web applications and public cloud infrastructures (AWS, Yandex.cloud, etc.).
According to the company, CloudGuard AppSec (part of the CloudGuard solution for protecting workloads in cloud environments) eliminates numerous false positives associated with the use of classic signature mechanisms of web application firewalls (WAFs).
The solution does not require manual configuration: by analyzing application requests in a context using AI, CloudGuard AppSec automatically prevents attacks on cloud and web applications. All of this enables organizations to take full advantage of public and private clouds. In 2020, the number of gaps in web applications doubled: outdated firewalls did not keep pace with the speed of development of cloud applications. So, the first generations of security gateways were based on threat signatures and required complex manual configuration. The problem was exacerbated as companies moved to launch container applications. According to the results of a study on the use of containers for 2020 years, 49% of them worked less than 5 minutes, and 21% - less than 10 seconds. Such quick changes led to the fact that outdated firewalls were overloaded due to a large number of false positives and constantly required administrators to manually configure. All this forced IB specialists to put these solutions in the detection mode, and not to prevent threats.
 | As of March 2021, web applications are increasingly becoming the target of cybercriminals. At the same time, traditional firewalls simply do not keep pace with the speed of changes in modern cloud applications and require constant manual reconfiguration of protection rules and policies. Organizations become vulnerable to attacks and threats, and this can cause serious financial damage. told by TJ Gonen, head of the Check Point Software cloud product line |  |
| | The pandemic accelerated the development of clouds in Russia, and the security of web applications. For our customers, this becomes a top priority. | |
| | Protecting workloads and applications in the cloud requires a comprehensive set of features and capabilities. However, the path to protecting workloads begins with protecting web applications and APIs. By including automatic application protection in the CloudGuard, Check Point provides built-in security for web applications and demonstrates an understanding of the specifics of cloud environments. noted Frank Dixon, vice president of security at IDC Research | |
Capabilities of CloudGuard AppSec:
- Continuously protect applications as they evolve. CloudGuard AppSec blocks attempts to compromise site content, leak information and intercept user sessions, and also prevents all ten risks of violation of application security from the top 10 OWASP. Using artificial intelligence technologies, the solution constantly adapts to changes in applications, self-updates and self-tunes, providing continuous protection and reducing the number of false positives.
- Advanced protection against API attacks. As it progresses, the app creates more and more public APIs that also need protection. CloudGuard AppSec automatically prevents attackers from using APIs to expose sensitive data, execute malicious commands, or retrieve API keys.
- Auto-protect against bots. Using behavioral analysis, CloudGuard AppSec distinguishes between human and automatic interaction with the application. This prevents bots from picking passwords and attempting web scraping. For bots useful to business, there is an opportunity to make an exception.
| | We needed to protect the application we developed and the various types of data it processes in a complex and dynamic Google Kubernetes environment. With the CloudGuard solution from Check Point, we have an automated tool for preventing dangerous and advanced threats on web applications. explained Mark Unak, Technical Director Harqen.ai | |
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |