Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

9/22/2010
05:11 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Application Security Inc. Forms Data Security Alliance

Program designed to simplify integration between AppSec's DbProtect product line and complementary solutions

NEW YORK and SAN FRANCISCO (Oracle Open World), September 20, 2010 – Application Security, Inc. (AppSec), the leading provider of database security, risk and compliance (SRC) solutions for the enterprise, today announced the formation of the Data Security Alliance(DSA) to enable organizations to strengthen their database security posture with an industry-leading, extensible and data-centric approach to protecting sensitive data.

AppSec's Data Security Alliance(DSA) is a strategic partnership of leading technology organizations aligned by the belief that data security is anchored by a best-practices lifecycle approach to database security, risk and compliance. The DSA Program was designed to simplify integration between AppSec's DbProtect™ product line and complementary solutions from other industry-leading vendors.

Built on the industry's most extensive knowledge-base of database-specific vulnerabilities, DbProtect is acknowledged as the industry's most complete database security solution - combining database discovery, scanning, vulnerability assessment, real-time activity monitoring, auditing and rights management. The comprehensive, integrated solution allows organizations to secure their most sensitive data from internal and external threats while also ensuring that those organizations meet or exceed regulatory compliance and audit requirements.

"We've brought together leading organizations to provide a best-of-breed, fully extensible approach to database security, risk and compliance," said John Ottman, president and CEO, AppSec. "This alliance extends AppSec solutions to meet the most demanding customer requirements for end-to-end data security."

AppSec's ‘DSA Connectors' enable strategic technology partners not only to integrate with DbProtect, but to collaborate on a level not previously achieved in the industry. This partnership facilitates successful database SRC initiatives by enabling users to seamlessly combine complementary solutions.

AppSec and its DSA partners extend DbProtect's capabilities across the following solution sets:

* Asset Management * Policy Management * Vulnerability Management * Rights Management * Configuration and Patch Management * Audit and Threat Management * Analytics and Reporting

"The daunting task of securing sensitive and regulated data is an enterprise-wide challenge, requiring often disparate solutions to work in concert to both inform and enforce policy," said Josh Corman, Research Director for Security at The 451 Group. "Practitioners are seeking intelligent and meaningful integration points between their security and compliance investments. Alliances such as the Data Security Alliance offer the promise of helping taxed organizations better stave off both auditors and attackers."

About the Data Security Alliance™ (DSA) AppSec's Data Security Alliance (DSA) facilitates successful database security, risk, and compliance through the delivery and integration of complementary products. The alliance enables organizations to take an extensible data-centric approach to protecting sensitive data. The aim of the alliance is to increase awareness of data security challenges, deliver complementary solutions to address those challenges, encourage product integration, and demonstrate repeatable models for enterprise database security.

Current DSA partners include Agiliance, ArcSight, CoreTrace, Dataguise, eEye Digital Security, Fortify, GridApp, McAfee, nCircle, Rev2 Networks, RSA (Archer Technologies and enVision), and Rsam.

About Application Security, Inc. AppSec is the leading provider of database security, risk and compliance (SRC) solutions for the enterprise. AppSec's agentless approach - AppDetectivePro for auditors and IT advisors, and DbProtect for the enterprise - delivers the industry's most scalable database SRC solution and is in use around the world in the most demanding environments by over 2,000 customers. The company was named to Inc. Magazine's 2007 (Inc. 500) and 2008 list of America's Fastest Growing Private Companies, and was also named to the 2008 Deloitte Technology Fast 50 by Deloitte & Touche.

For a free database vulnerability assessment visit: http://www.appsecinc.com/downloads/appdetectivepro/

For more information, please visit www.appsecinc.com.

Follow us on Twitter: www.twitter.com/appsecinc

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Manchester United Suffers Cyberattack
Dark Reading Staff 11/23/2020
As 'Anywhere Work' Evolves, Security Will Be Key Challenge
Robert Lemos, Contributing Writer,  11/23/2020
Cloud Security Startup Lightspin Emerges From Stealth
Kelly Sheridan, Staff Editor, Dark Reading,  11/24/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27218
PUBLISHED: 2020-11-28
In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that is ...
CVE-2020-29367
PUBLISHED: 2020-11-27
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data.
CVE-2020-26245
PUBLISHED: 2020-11-27
npm package systeminformation before version 4.30.5 is vulnerable to Prototype Pollution leading to Command Injection. The issue was fixed with a rewrite of shell sanitations to avoid prototyper pollution problems. The issue is fixed in version 4.30.5. If you cannot upgrade, be sure to check or sani...
CVE-2017-15682
PUBLISHED: 2020-11-27
In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to inject malicious JavaScript code resulting in a stored/blind XSS in the admin panel.
CVE-2017-15683
PUBLISHED: 2020-11-27
In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to create a site with specially crafted XML that allows the retrieval of OS files out-of-band.