PRESS RELEASE

NEW YORK and SAN FRANCISCO (Oracle Open World), September 20, 2010 – Application Security, Inc. (AppSec), the leading provider of database security, risk and compliance (SRC) solutions for the enterprise, today announced the formation of the Data Security Alliance(DSA) to enable organizations to strengthen their database security posture with an industry-leading, extensible and data-centric approach to protecting sensitive data.

AppSec's Data Security Alliance(DSA) is a strategic partnership of leading technology organizations aligned by the belief that data security is anchored by a best-practices lifecycle approach to database security, risk and compliance. The DSA Program was designed to simplify integration between AppSec's DbProtect™ product line and complementary solutions from other industry-leading vendors.

Built on the industry's most extensive knowledge-base of database-specific vulnerabilities, DbProtect is acknowledged as the industry's most complete database security solution - combining database discovery, scanning, vulnerability assessment, real-time activity monitoring, auditing and rights management. The comprehensive, integrated solution allows organizations to secure their most sensitive data from internal and external threats while also ensuring that those organizations meet or exceed regulatory compliance and audit requirements.

"We've brought together leading organizations to provide a best-of-breed, fully extensible approach to database security, risk and compliance," said John Ottman, president and CEO, AppSec. "This alliance extends AppSec solutions to meet the most demanding customer requirements for end-to-end data security."

AppSec's ‘DSA Connectors' enable strategic technology partners not only to integrate with DbProtect, but to collaborate on a level not previously achieved in the industry. This partnership facilitates successful database SRC initiatives by enabling users to seamlessly combine complementary solutions.

AppSec and its DSA partners extend DbProtect's capabilities across the following solution sets:

* Asset Management * Policy Management * Vulnerability Management * Rights Management * Configuration and Patch Management * Audit and Threat Management * Analytics and Reporting

"The daunting task of securing sensitive and regulated data is an enterprise-wide challenge, requiring often disparate solutions to work in concert to both inform and enforce policy," said Josh Corman, Research Director for Security at The 451 Group. "Practitioners are seeking intelligent and meaningful integration points between their security and compliance investments. Alliances such as the Data Security Alliance offer the promise of helping taxed organizations better stave off both auditors and attackers."

About the Data Security Alliance™ (DSA) AppSec's Data Security Alliance (DSA) facilitates successful database security, risk, and compliance through the delivery and integration of complementary products. The alliance enables organizations to take an extensible data-centric approach to protecting sensitive data. The aim of the alliance is to increase awareness of data security challenges, deliver complementary solutions to address those challenges, encourage product integration, and demonstrate repeatable models for enterprise database security.

Current DSA partners include Agiliance, ArcSight, CoreTrace, Dataguise, eEye Digital Security, Fortify, GridApp, McAfee, nCircle, Rev2 Networks, RSA (Archer Technologies and enVision), and Rsam.

About Application Security, Inc. AppSec is the leading provider of database security, risk and compliance (SRC) solutions for the enterprise. AppSec's agentless approach - AppDetectivePro for auditors and IT advisors, and DbProtect for the enterprise - delivers the industry's most scalable database SRC solution and is in use around the world in the most demanding environments by over 2,000 customers. The company was named to Inc. Magazine's 2007 (Inc. 500) and 2008 list of America's Fastest Growing Private Companies, and was also named to the 2008 Deloitte Technology Fast 50 by Deloitte & Touche.

For a free database vulnerability assessment visit: http://www.appsecinc.com/downloads/appdetectivepro/

For more information, please visit www.appsecinc.com.

Follow us on Twitter: www.twitter.com/appsecinc