« ISM Community Top Ten
Security Bloggers Network and Influential List Nonsense »

At Last A Web App Firewall that Can Actually Work

It took a company with a development DNA to properly design a solution for the web application protection space (as have been predicting for several years).  Web applications firewalls that operate on an HTTP stack have severe limitations in the real world.  We built a proof of concept of the approach taken by Fortify’s new product below that hooked the .NET CLR a few years back at Foundstone  and called it Validator.NET.

I have no affiliation with Fortify whatsoever but this looks very interesting indeed. It’s just a smarter approach to solving the problem.

It will be interesting to see how this changes acquisitions in the space as well. I have been predicting for a long time that the web app firewall market should be owned by the app server vendors like BEA and IBM and this makes an acquisition much more attractive. Kleiner Perkins companies are smart aren’t they!

Explore posts in the same categories: Security Industry, Software Development

This entry was posted on March 19, 2007 at 12:13 pm and is filed under Security Industry, Software Development. You can subscribe via RSS 2.0 feed to this post's comments. You can comment below, or link to this permanent URL from your own site.

Comment: