Company Recognized for Ability to Provide Runtime Application Self-Protection against SQL Injection, Zero-Day and Unpatched Vulnerabilities without Code Changes or Hardware
Innovation Sandbox Contest promotes new approaches to information security technology, provides advice and counsel for entrepreneurs, and exposes the RSA Conference community to venture capitalists, industry experts, senior level business practitioners and thought leaders.
“Success awaits those that are named to the top 10 finalists for RSA Conference Innovation Sandbox Contest,” said Sandra Toms, vice president and curator for RSA Conferences. “Year after year, finalists have gained visibility and validation within the information security industry that has catapulted them to new heights. Many past winners and finalists have experienced high growth and increased funding, and we expect the same with this year’s top 10.”
Waratek provides run-time application self-protection (RASP) for security monitoring, policy enforcement and attack blocking from within the Java Virtual Machine. This approach protects both data center and cloud-based applications against exploits that target vulnerabilities in third party libraries or legacy code, as well as zero-day malware and SQL injection attacks. Waratek prevents attacks from reaching applications regardless of whether they target business logic or code vulnerabilities.
To protect against malicious exploits, abnormal file manipulation or unexpected network connections, Waratek uses a small set of rules to quarantine illegal operations inside the application. Its unique Taint Detection Engine can detect and block SQL Injection attacks with 100 percent accuracy and without generating false positives associated with Web Application Firewalls and other technologies that rely on heuristics and signature-based detection. Waratek enables applications to protect themselves from the inside out, without code changes, hardware or any user discernible performance degradation.
“Being selected as a finalist for the Most Innovative Company at RSA Conference 2015 validates our approach of delivering runtime application self-protection against code level vulnerabilities, zero-day malware and SQL injection attacks,” said Brian Maccaba, CEO of Waratek. “Our ability to secure enterprise applications without any code changes, hardware or false positives, is a completely different approach to preventing data breaches.”
The “Most Innovative Company at RSA Conference 2015” winner will be determined at the conclusion of Innovation Sandbox Contest, after each finalist gives a short presentation to a panel of judges that includes Asheem Chandna, partner at Greylock Partners; Gerhard Eschelbeck, chief technology officer and senior vice president of Sophos; Renee Guttman, vice president for information risk at Accuvant; Patrick Heim, chief security officer of Salesforce; and Paul Kocher, president of Cryptography Research.