Breach Security Unveils BreachGate WebDefend, the Next-Generation of Web Application Security

WebDefend enhances network security with tailored application security to protect privileged information on the Web

Carlsbad, Calif. — September 26, 2005 — Today, Breach Security, Inc. announced BreachGate WebDefend™—the next-generation Web application security solution that protects privileged information from targeted cyber attacks such as identity theft, information leakage, loss of trade secrets and intellectual property.

Organizations demand greater protection against cyber crime than what is provided by network firewalls and IDS/IPSes. WebDefend addresses this need by providing comprehensive application-specific security against Web-based threats, while complementing existing network security at the perimeter.

“Web applications have become essential parts of companies’ business strategies,” says Andrew Jaquith, Senior Analyst, Yankee Group. “At the same time, targeted, malicious attacks against these applications are increasingly sophisticated. First-generation Web application security solutions used SSL to keep communications confidential. But in today’s climate, encryption isn’t enough. Companies need solutions that protect the integrity and availability of Web transactions.”

WebDefend provides tailored protection for the unique security challenges of ever changing Web applications. The solution automatically builds and maintains a profile of acceptable application behavior that is used to validate all communication with the Web application. Invalid traffic is passed to the collaborative detection engines that provide the security context for anomalous traffic to determine if a real attack is taking place and to take preventative actions.

In addition to protecting against incoming attacks, WebDefend’s ExitControl™ technology monitors outgoing responses from Web applications. WebDefend uses BreachMarks, or patterns used to detect any information important to an organization such as credit cards and social security numbers, from leaving the corporate network.

WebDefend provides its comprehensive application protection without requiring an inline deployment, thereby alleviating concerns over introducing another single point of failure in the network or introducing latency into application performance. WebDefend protects Web applications by integrating with existing inline network devices, such as network firewalls and load balancers, through its Distributed Detect/Prevent Architecture™ (DDPA), allowing organizations to leverage existing investments in best-of-breed technologies.

According to Scott Crawford, Senior Security Analyst, Enterprise Management Associates, “Breach Security’s WebDefend represents the next generation of operational application security: distributed application security management, an approach which has the potential to obsolete current single-point-of-protection techniques by embracing the entire range of tools available to protect critical enterprise applications.” Crawford adds, “The more comprehensive approach of a next-generation tool such as WebDefend extends security beyond web app firewalls alone. It does so in a non-invasive manner that doesn’t interfere with performance and availability of enterprise applications, and leverages existing investments in the application infrastructure.”

Existing Web application security solutions have real liabilities that force the enterprise to hang application security on one single inline point of failure introducing additional latency, according to Breach, its customers, and prospects.

“The customer-driven, distributed approach of WebDefend is to deploy application security without betting ‘the farm’ on one single point of failure,” says Marc Shinbrood, CEO of Breach Security. “In addition, WebDefend deploys application security without impacting production network operations as it protects applications from dangers associated with rapidly changing Web environments. We do so by using existing and proven network security resources.” Shinbrood adds, “With partners such as Sourcefire, Inc., Counterpane Internet Security and Forum Systems, Breach provides best of breed security integration tailored to the specific application.”

BreachGate WebDefend is sold directly and pricing starts at $20,000.

About Breach Security, Inc.

Breach Security, Inc. is a leading provider of next-generation web application security that protects corporate-critical information. Breach effectively protects web applications of commercial enterprises and government agencies alike against Internet hacking attacks and provides an effective solution for expanding security challenges such as identity theft, information leakage, and insecurely coded applications. Breach’s solutions are ideal for any organization’s regulatory compliance requirements for security.  Breach was founded in 2004 and is headquartered in Carlsbad, Calif. For more information visit: www.breach.com.

# # #

Media Contacts:

Breach Security, Inc. U.S.

Dan Chmielewski, Principal
Madison Alexander PR, Inc.
dchm@madisonalexanderpr.com
(949) 231-2965