“AudioTel is in the business of providing quality online financial and banking services—availability and the integrity of our systems is very important to our customers. WebDefend provides visibility into each and every inbound request and server response giving us the ability to recognize sophisticated application attacks and anomalies. This valuable information allows us to constantly improve our defenses and ensure the delivery of our application services to our customers.”

“When we executed the initial pilot, Breach Security provided us with an assessment report of web application vulnerabilities which were detected in our application simply by installing WebDefend. We were amazed to see the number of potential attacks and holes within our web applications that were susceptible to a breach. WebDefend’s forensics capabilities demonstrated that attacks were coming at us from multiple parts of the world including SQL injection attacks that criminals launch to obtain data by taking advantage of unpatched vulnerabilities in our web applications.”

“Breach Security scored the best attack detection capabilities earning the company a ‘strong performer’ distinction.”

“Using WebDefend creates more value and less expense than third-party penetration testing. WebDefend delivers real-time, day-to-day visibility into the security of our web applications and provides the detailed event analysis that is critical in identifying attackers and working with law enforcement.”

“Breach Security’s WebDefend represents the next generation of operational application security: distributed application security management. This approach has the potential to obsolete current single-point-of-protection techniques by embracing the entire range of tools available to protect critical enterprise applications.”

“Web applications have become essential parts of companies’ business strategies. At the same time, targeted, malicious attacks against these applications are increasingly sophisticated. First generation web application security solutions kept communications confidential using SSL. But encryption isn’t enough; in today’s climate, companies need solutions that protect the integrity and availability of web transactions as well.”

“Consider all e-commerce and banking applications on the Internet, they are all encrypting because they are most critical but they are just as vulnerable as any other application. Our IDS can’t tell us when these attacks are being launched because the attack is wrapped in a 128-bit encryption envelope. In short, most of the attacks launched are being missed because of our own security mechanisms.”

“SSL traffic has always been an inconspicuous spot on the network in regards to detecting malicious activity. It has become an increasing factor the past few years as traffic has grown, particularly with the impact of new regulatory requirements of federal and state privacy initiatives,” The BreachView SSL plug-in for IDS systems would significantly enhance products like ISS, Dragon, Snort, Sourcefire and others, allowing the IDS to see attack signatures and anomalies in SSL traffic for the first time.”