DEVOPSdigest

Arxan Technologies announced a new rapid protection and threat detection capability designed into Arxan's mobile, hybrid and web app protection solutions.

As part of the DevOps process, Arxan now allows organizations to rapidly inject an essential set of code protections and threat detection sensors into an application after code development. Protections can be applied without the need for complex security configurations or deep security knowledge, all while maintaining full control of the code. With this revolutionary new approach, Arxan helps organizations establish a DevSecOps practice that integrates automated app security and ongoing optimization based on real threat data and app-level insights.

"With Arxan's new, easy-to-deploy essential app protection, we have removed critical barriers to implement security measures during the post app development process, and provide unprecedented feedback and reporting on actual threats and behavior from inside the application itself. There should be no more excuses as to why all applications aren't properly protected," says Joe Sander, CEO of Arxan. "Organizations are investing heavily in DevOps to minimize time to market and maintain a competitive advantage. But, speed shouldn't come at the expense of security, especially when sensitive data, customer trust, brand reputation and revenue are at risk."

In addition to ease of implementing app security within the DevOps process, the key to stopping threats is to identify them as early as possible, during the initial phases of an attack. Arxan essential mobile and web app security solutions deliver code protection and real-time threat reporting with Threat Analytics from the moment an app is published. Threat data can then be used to determine compromised device status and discover how and when apps are being attacked. Additionally data insights can be viewed with Arxan's analytics portal or be easily integrated into business intelligence, security information and event management (SIEM), or fraud prevention platforms to enhance existing decisioning systems with real data from inside the application. With this threat intelligence organizations can develop appropriate business responses, ranging from disabling app functionality, limiting or terminating account access, and creating more comprehensive app protection code to reinforce discovered vulnerabilities — all before threats can become widespread attacks.

Arxan offers an app protection solutions that can detect and stop mobile, hybrid, web and desktop or server app attacks. Arxan's enhanced protection offering now delivers essential threat protection and detection with a zero-configuration setup, offering:

- Rapid time-to-protection - Initial protection and instrumentation of apps with Threat Analytics without any configuration

- Real-time threat visibility - Know if, how and when apps are being attacked

- Adaptive protection - App protection can be updated and changed without developer or test suite modification that fits into CI / CD between without disrupting development and testing

"Unprotected apps can become exploitable liabilities — allowing bad actors to attack the enterprise via signals within the app code, changes in the way an app interacts, by compromised API calls, and more. And today's enterprises have limited resources and/or in-house expertise available to implement a comprehensive app security program, so they tend to focus all their efforts on one or two flagship apps and leave the rest unprotected. With Arxan essential app security, enterprises can add effective initial protection to all of their applications, and detect real-world threats they face with Threat Analytics, and then use that info to justify and deploy additional app security resources where they will be most impactful," says Rusty Carter, VP of Product Management at Arxan.