The Waratek security plugin hardens legacy and current Java
Runtime, the JBoss application server and the Application itself by
adding security features and benefits across the full application
stack.
WSO2CON 2024 - Building the API First Enterprise – Running an API Program, fr...
Waratek Securing Red Hat JBoss from the Inside Out
1.
2. Network Firewalls
Great first-line defense, but no
protection once an attacker is
inside the network
Web App Firewalls
Generates a high volume of errors, often
blocks legit transactions, and is vulnerable
to unknown and unpatchedattacks; slows
app and network performance; causes
problems, but cannot fix app flaws
RASP by virtualization
Protects current and legacy apps
from known and unknown
attacks; zero error rate and does
not slow the app or network;
easy to install and operate
Scanners / Monitors
Can only detect known attacks and
code flaws; not designed to repair
or protect applications
Runtime
Application
Self-Protection
(RASP)
The next generation of application security that solves the issues caused by
network and web app firewalls and other app security tools. Waratek’s RASP
solutions are highly accurate, easy to install, simple to operate, and do not
slow network or application performance.
Network & Application Security Today
Next Gen
App Security
3. What is
RASP
& why is it
important to
me?
Runtime Application Self-protection (RASP) – a term coined
by Gartner - is an application security technology built into
or linked to an application or application runtime
environment. It is capable of controlling application
execution while detecting and preventing real-time attacks.
Without RASP, external malicious apps can intercept the
execution of a genuine application at runtime and modify it
for nefarious activities.
“Modern security fails to test and
protect all apps. Therefore, apps must
be capable of security self-testing,
self-diagnostics and self-protection. It
should be a CISO top priority.”
Out of more than 30
technologies reviewed, RASP is
the only app security technology
listed as “transformational” in
Gartner’s 2015 Hype Cycle.
4. Waratek’s &
Red Hat
solutions
complement
each other
Security Hardening Operations Efficiency
Ansible / Azure
Satellite
Waratek is an innovative Runtime Application
Self-Protection (RASP) technology that uses
secure, virtual containers to protect Java
applications from known and unknown risks
without negatively impacting performance.
Waratek has received ten industry awards,
including the 2015 RSA Conference’s
Innovation Sandbox Award.
5. Using Red Hat Satellite,
organizations can deliver secured
application stacks across their
entire estate. Through the power
of Waratek’s RASP solution,
businesses are protected from
the most severe known and
unknown software vulnerabilities.
Waratek’s unique approach to
application security means that in
addition to the business layer of
your service having deep
protection, the full application
stack is also protected for current
and legacy Java applications.
“Security and Innovation go together”
– RedHat.com
Runtime Application Self-
Protection provided by
Waratek and delivered by
Red Hat
6. Waratek +
Red Hat =
Triple the
Defense
Security Hardening The Waratek security plugin
hardens legacy and current Java
Runtime, the JBoss application
server and the Application itself by
adding security features and
benefits across the full application
stack, including:
Defense Against Attacks in Business Logic
Defense Against Attacks in Full Software Stack
Protects Vulnerable Legacy Java Applications
Generates Zero False Positives
No Application Code Changes Required
No Prior Knowledge of Application Behavior Required
No Additional Sensors or Other Hardware Devices
Detailed Application Level Forensic Data
More secure Java runtime
Security Hardened application server(s)
More secure application(s)
7. Waratek +
Red Hat
make life
easier for
DevOps &
Security Pros
As a licensed developer of Oracle’s
Java and Microsoft’s Azure, Waratek’s
security features work in concert with
RedHat’s Satellite and Ansible for
Azure solutions.
With Satellite, Waratek’s JVM security
solutions and updates can be easily
deployed across an enterprise.
With the Ansible for Azure solution,
Waratek’s security solutions can be
deployed in a cloud environment.
Waratek solutions require no tuning,
code changes, or appliances and have
minimal performance impact while
producing zero false positives –
helping to ease the stress of
deploying a new security solution.
Operations Efficiency
Ansible / Azure
Satellite