The RSA Conference is a cryptography and information security-related conference held annually in the San Francisco Bay Area. This year the conference will take place from 14-18 February. At the conference, softwares companies have unveiled new security softwares. We would be tracking them down.
Two new open source web application firewalls (WAF) by two companies, Qualys and Art of Defence. Web application firewall tracks http traffic rather than traditional network packets. They can detect various web based attacks like javascript based attacks etc. Qualys announced IronBee, which has been created by the team that developed the open source WAF modsecurity. The developers are currently looking for early adopters to play a part in future development plans. Source code is already available. Its whitepaper can be read here. On the other hand, Art of defence has relased OpenWAF, a web application firewall. The OpenWAF web site offers nightly built binaries for download for CentoS, Debian , Fedora Core 14, Gentoo, RHEL , Solaris 10, Ubuntu and Windows. More information can be obtained form the site.
ZDnet blog also reports of new security software released at the conference. It reports release of Oracle’s database firewall.The firewall uses “SQL grammar analysis” to prevent SQL injection attacks and other attempts to grab information. The Oracle Database Firewall features white and black lists policies, exceptions and rules that mark the time of day, IP address, application and user. Security has become a big concern these days. And with release of these softwares , we can feel bit assured for security!
