PALO ALTO, Calif. — Data Theorem is introducing an active protection suite with observability and run-time defense to secure applications stacks.
The offering covers a range of functions: API, cloud, mobile, modern web, and serverless (Lambda), according to Data Theorem this month.
It works across Data Theorem’s product portfolio to help customers enable application-layer security defenses across their application stacks.
Active Protection Suite features
- Starts at the client layer (mobile and web), protects the network layer (REST and GraphQL APIs), and extends down through the underlying infrastructure (cloud services)
- The run-time defenses include attack prevention, OWASP Top 10 rules, known malicious sources, policy violations of encryption levels, authentication types, authorization rules, and a variety of custom rule checks, including preventing Broken Object Level Authorization (BOLA) attacks
- Increased observability (logging, tracing, trending)
- Customers can enable Data Theorem’s Active Protection through the use of their SDKs (software development kits), application extensions (Lambda layers), and AppSec proxy (L7 sidecar proxying)
“Application environments are more dynamic when leveraging cloud services requiring increased telemetry,” said Doug Dooley, Data Theorem COO.
“Organizations need to discover their growing attack surfaces as their cloud adoption grows.”