TippingPoint, a provider of network security services, has launched Web Application Digital Vaccine services, a two-part approach to address the security threat posed by web applications.
The company said that this new set of services enable the company’s customers to maximize their security investments, while reducing the risk of attacks through custom-built web applications. The deployment of the Web Application Digital Vaccine (Web App DV) service allows organizations to show Payment Card Industry Data Security Standard (PCI DSS) compliance, while avoiding the pitfalls associated with the ambiguous protection offered by web application firewalls.
With the TippingPoint Web App DV services, vulnerabilities in customers’ custom-built web applications are identified and remediated with a set of custom DV filters working in tandem with the standard DV filters to provide comprehensive network protection, said TippingPoint.
The service begins with a scan of the application and associated URLs to determine weak points in the code and possible areas that could be exploited by malicious attacks such as SQL injection, cross-site scripting or reverse proxy. Once the scan is completed, the customer works with TippingPoint’s DVLabs team to categorize the vulnerabilities by severity and create a custom filter or set of filters that will be deployed through the TippingPoint IPS.
According to TippingPoint, Web App DV services not only scan these web applications for dangerous vulnerabilities, but also create custom filter sets that protect the organization’s critical assets and meet the standard for PCI compliance. Additionally, as part of the follow-up scan, the protection from these filters is documented in a PCI report, providing clear validation that the identified vulnerabilities have been mitigated
Rohit Dhamankar, director of TippingPoint’s DVLabs, said: TippingPoint’s Web App DV services extend the power of the IPS to capture attacks threatening previously unseen security vulnerabilities. Adding custom filters to the standard filters already included in the TippingPoint IPS provides our customers with another layer of protection for their corporate assets.