Application Security
Application Security includes solutions to prevent, detect and fix security vulnerabilities during application development, deployment and operation:
- Comprehensive API protection platform
- Firewall protects Web applications & API
- Database Encryption
1.Comprehensive API protection platform:
- Product: API Security Platform
- Brand: Noname
Noname’s API Security Patform is an advanced solution to meet the need for API protection in the increasingly popular Microservice environment.
Microservice is a software architecture based on the principle of dividing an application into compact, independent components that can operate independently of each other. Each Microservice interacts with each other through API communications.
With the trend of using systems designed towards Microservices, managing and protecting all APIs has become a big challenge for financial institutions, banks, telecommunications, and insurance. and government. The larger the number of applications, the larger the application attack surface, causing the risk of risk to increase exponentially.
In that situation, Noname’s API Security Platform product provides a flexible, comprehensive API protection solution for both Onpremise and Cloud environments, with a set of 3 tools:
- Secure API programming and development.
- Secure API configuration control.
- Monitor, detect, and prevent problems arising with API infrastructure.
2.Firewall protects Web applications & API:
- Product: Web Application & API Protection (WAAP)
- Brand: Polaris
Web Application & Polaris API Protection (WAAP) applies new generation artificial intelligence (AI) technology. With the ability to proactively detect and prevent threats to customers’ websites, this platform will help protect the most important data and assets of each individual and business, while providing convenience. during use.
With powerful features, Polaris’ WAAP solution helps protect websites from dangerous attacks such as: DDoS, SQL injection, Zero-Day attacks, and vulnerabilities ranked in the top 10 OWASP before exploited application owner. Configurations will be installed by default with protection rules set up by experts. After integration, the system will immediately be protected. In addition, the configuration can also be easily adjusted to suit the customer’s security conditions when necessary.
3.Database Encryption:
- Product: Magic DB Plus
- Company: Dream Security
Dream Security’s Magic DB Plus solution will help prevent database leaks, through encryption and access control to data stored on the database management system.
The main features of the product include:
- Improve security by applying security policies such as encryption keys, algorithms,….
- Of personally identifiable information, only sensitive information is encrypted.
- Use specific database management tools to initially encrypt data.
- Supports many different database management systems including Oracle, MS-SQL, MySQL, DB2, Sybase, MariaDB, Firebird, Cubrid, Tibero, Altibase,…
- Provides various encryption methods such as API / Plug-In / Hybrid.
- Supports encoding/decoding for many languages.
- Supports multiple encryption algorithms and cryptographic modules verified by NIS.