Securing applications in the cloud can prove a difficult challenge for businesses. Any solution needs to balance protection against accessibility and not harm performance.
Java security specialist Waratek has used the Microsoft TechEd Europe conference in Barcelona to announce an innovative bring your own security (BYOS) approach to the problem called Waratek Locker.
It's a secure container that provides Runtime Application Self-Protection (RASP) for Java applications deployed on the Azure cloud platform. Waratek Locker provides transparent protection against business logic and network layer threats regardless of where an application is hosted and without the need to make any code changes.
The product works within the Java virtual machine allowing it to provide security monitoring, policy enforcement and attack blocking. It can guard cloud applications from exploits that target vulnerabilities in third party libraries and malicious activity including SQL injection, abnormal file manipulation or unexpected network connections.
Applications deployed in Waratek Locker are protected by a rule-based engine. This can be remotely managed by administrators and it comes pre-configured with rules to restrict application access to only required files and network functions, and to block SQL injection attacks.
"Microsoft Azure is a powerful platform for deploying enterprise applications in the cloud that includes industry leading infrastructure level security," says Brian Maccaba, CEO of Waratek. "With Waratek Locker we enable organizations to bring their own application security controls to Azure in one easy to deploy and manage container. It is truly portable enterprise class security for the cloud".
You can find out more and get a free trial on the Waratek website. The company has also made a free tool available for writing custom security rules.
Photo Credit: Slavoljub Pantelic / Shutterstock