Signal Sciences, the most trusted brand in web defense with patented next-gen WAF and RASP technology, today announced its new Network Learning Exchange (NLX) and Power Rules offerings. The new capabilities offer a trusted network data feed of confirmed threats to provide advanced warning to other Signal Sciences customers and an intuitive user-interface to define, monitor and take action on any web application or API transaction.
Signal Sciences NLX is the first trusted web application attack feed that informs enterprise customers of suspicious traffic from sources that have been confirmed to be malicious elsewhere. Power Rules helps broaden the capabilities for enterprises to see and stop attacks beyond OWASP injection, which has been the focus of legacy WAF and RASP tools. Using Network Learning Exchange together with Power Rules enables security teams to auto-alert and block on network intelligence from Signal Sciences NLX to ensure the highest level of protection.
Unlike legacy WAFs and RASPs, which struggle to not only provide basic coverage for common OWASP injection attacks, but also rarely provide protections beyond them, Signal Sciences is innovating to quickly cover these and other advanced threats.
Simple set-up and easy maintenance also frees security, DevOps, and development teams from the need to hire additional resources, which is key in today’s tight cybersecurity skills market.
According to a 2017 CSA (cloud security alliance) survey, 40.4 percent of respondents say that the alerts they receive lack actionable intelligence to investigate. Another 31.9 percent report that they ignore alerts due to the sheer number of false positives. In addition, existing peer-to-peer signature exchanges only result in more irrelevant alerts that cause false positives.
“With NLX and Power Rules, Signal Sciences continues to innovate in the WAF market which hasn’t seen meaningful advances either by incumbents or through technology acquisition. For example, Gartner continues to identify weak analytics and efficacy from legacy WAF, especially amidst the rapid adoption of multi/hybrid cloud and DevOps. Today, Signal Sciences sees more than 150 billion requests weekly and with NLX, we’ve created a resilient, protective layer that uses that data to continually advance our detection intelligence. The result is 95% of our customers have blocking mode enabled on their production sites,” said Andrew Peterson, CEO of Signal Sciences. “With Power Rules, enterprises can see beyond basic OWASP injection attacks and focus on the traffic that could be harming their business—something they didn’t have before.”
“Our customers have the benefit of the foundation we’ve built through working with large brands and dealing with the ever changing and growing levels of traffic that we see daily,” added Peterson. “They get that added and unprecedented bonus of leveraging intelligence from their peers for better protection to help defend against the 41% of successful breaches Verizon tells us are occurring through web applications today.”
More About Network Learning Exchange (NLX)
Network Learning Exchange (NLX) recognizes attack patterns across Signal Sciences’ customer network to proactively alert and defend other enterprise web applications and APIs. Unlike other solutions, Signal Sciences NLX offers accurate intelligence from trusted sources since Signal Sciences is used in blocking mode with 95% of its customers across the most common attack types using its proprietary SmartParse technology. NLX eliminates the need to send signatures that can cause false positives. Instead, NLX delivers alerts when confirmed malicious sources are present on a customer’s website.
More About Power Rules
Power Rules provides the most flexible and easy to use platform for achieving business logic protection, negating the need for point security solutions around account takeover, fraud, bots and others. This includes application and feature abuse and misuse, bad bots, virtual patching for CVEs, and more. With Power Rules, security and DevOps teams can start by defining signals using the intuitive user interface in the console to gain greater visibility, then trigger automated actions using those signals, and augment agent detections with customer-sourced lists of IPs, user agents, and other useful sources. There are no regexes to tune and no complicated rules or scripting language to learn or manage.
- Blog: Just in Time for Black Hat: Summer Product Launch 2018 Featuring Power Rules and Network Learning Exchange
- Announcement: Digitally Native Beauty Brand, Glossier, Implements Signal Sciences
- Case Study: eCommerce Thwarts Account Takeovers with Simple Set Up and Ease of Use
- Signal Sciences Surges with Strong Customer Demand for Its Award-Winning Web Protection Platform
- Blog: Three Ways Legacy WAFs Fail
- Blog: Demand More From Your Web Application Firewall
Follow Signal Sciences
About Signal Sciences
Signal Sciences protects the web presence of the world’s leading brands. With its patented approach to WAF and RASP, Signal Sciences helps companies defend their journey to the cloud and DevOps with a practical and proven approach, built by one of the first teams to experience the shift. Based in Culver City, California, Signal Sciences customers include Under Armour, Etsy, Adobe, Datadog, WeWork and more. For more information, please visit www.signalsciences.com.
Media Contact for Signal Sciences
© 2018 Signal Sciences Corp. All rights reserved