With Akamai’s internet safety portfolio, the highest focus this October is on the internet utility firewall (WAF), with thrilling new capabilities: API Discovery and Adaptive Safety Profiles.
Together with the remainder of the trade, Akamai has noticed a long-term shift within the purposes that we’re delivering, from conventional web sites to API-based microservices architectures. Akamai reported that API site visitors composed 83% of all hits on our platform in 2019 and we’ve seen that stage proceed to develop 30% yr over yr. Because the assault floor shifts to APIs, lack of visibility of API sources and their site visitors profile stays a problem for each safety and improvement groups.
Akamai has launched a variety of API safety capabilities over time. In 2017, Kona Web site Defender launched new optimistic and unfavorable safety fashions for shielding APIs from volumetric and vulnerability exploit assaults. In 2018, Akamai launched an API Gateway to supply authentication and authorization for API site visitors on the edge. And in 2019, we added automated API inspection for internet utility assaults to Kona Web site Defender and Net Utility Protector. These capabilities assist safety groups deal with lots of the OWASP API Safety Prime 10 vulnerabilities at present.
With this October’s Akamai Platform Replace, Akamai is offering steady automated discovery and visibility into API endpoints and their site visitors profiles. This may empower improvement, safety, and operations groups with new perception and supply a streamlined mechanism to register and shield APIs in opposition to DDoS, injection, credential stuffing, and different assault sorts — all with a single click on.
Because the second marquee function of this launch, Adaptive Safety Profiles builds on Automated Assault Teams to alter the sport for Akamai’s WAF engine. Launched in 2017, Automated Assault Teams supplies a safety profile maintained and mechanically up to date by Akamai. This dramatically simplifies the duty of configuring and managing a WAF for purchasers that choose the hands-off strategy.
Adaptive Safety Profiles now additional will increase the facility and accuracy of WAF protections, by adapting protections based mostly on the danger of every incoming request. The chance profile of the request is computed based mostly on greater than 10 various factors, together with repute of the risk actor on the Akamai platform, markers of malicious automation, a historical past of attacking the precise buyer, origination from suspicious sources on the web, and others. This added context permits us to additional lower false negatives with out growing false positives, persevering with Akamai’s innovation in driving the very best attainable WAF accuracy for our prospects. Adaptive Safety Profiles is obtainable for Kona Web site Defender and Net Utility Protector prospects at present.
Past the WAF, Akamai has launched a variety of different updates throughout our portfolio of internet safety merchandise, together with Bot Supervisor, Shopper Repute, Web page Integrity Supervisor, and Prolexic. To be taught extra concerning the updates to your merchandise, proceed studying beneath and on the Akamai weblog.
Bot Supervisor helps organizations higher handle the enterprise and IT influence of fine and unhealthy bots, together with essentially the most subtle bots partaking in credential stuffing and internet fraud.
- Crypto problem motion (cellular): Provides help for making use of the crypto problem motion to cellular shoppers.
- Bot Endpoint Safety report — problem actions: The Bot Endpoint Safety report provides a brand new part on problem actions to know the variety of challenges that have been served or unsolved and higher establish false positives
- Akamai-categorized bots: Provides further bot signatures to the next classes: Educational / Analysis, Enterprise Intelligence, E-Commerce Search Engine, Enterprise Knowledge Aggregator, Monetary Account Aggregator, Job Search Engine, Media / Leisure Search, On-line Promoting, search engine optimisation / Analytics / Advertising, Social Media or Weblog, Web site Monitoring / Net Growth, and Net Search Engine
- Net Safety Analytics — further dimensions: Net Safety Analytics provides dimensions for Bot Supervisor, together with API useful resource function identify, bot sort, referrer and/or referrer area, rule, rule mixture, and shopper sort
- Cellular SDK v3.0.0: Bot Supervisor Premier SDK plugin for IOS provides help for guide initialization and removes help for automated initialization
- Ion integration: Filter bot beacons from the mPulse dataset when creating Adaptive Acceleration insurance policies; excluding bot knowledge from can enhance the dataset used for efficiency optimization
Shopper Repute supplies a further layer of safety based mostly on Akamai’s visibility into prior malicious exercise from particular person shoppers in opposition to all Akamai prospects.
- Shared IP intelligence: Gives visibility into shared IP addresses to be able to examine, set up repute profiles, and inject repute particulars into request headers forwarded to origin
- Configuration APIs: New APIs to programmatically create and edit Shopper Repute profiles or add repute data to a request header
Kona Web site Defender
Kona Web site Defender supplies complete and customizable safety in opposition to DDoS and internet app assaults for organizations with stringent necessities and complicated utility environments.
- API discovery: Analyzes site visitors on the Akamai platform to find each protected and unprotected APIs — together with their endpoints, definitions, and traits — after which supplies a easy workflow to register and shield APIs from DDoS, injection, and credential stuffing assaults
- Adaptive safety profiles: Automated Assault Teams now has tailor-made safety profiles for every buyer’s particular person risk panorama; the traits of each request contribute to a risk rating that dynamically modifies protections to detect the most-sophisticated assaults
- Configuration APIs: New APIs to programmatically handle your WAF configuration, together with altering price management settings, updating WAF guidelines, configuring analysis mode, configuring customized deny, and extra
Web page Integrity Supervisor
Web page Integrity Supervisor supplies a behavioral strategy to script safety designed to detect malicious script exercise, shield the integrity of your internet pages, and safeguard your corporation.
- Area repute: Improves vulnerability identification and remediation by offering further particulars on how the danger rating displayed in incidents and dashboards was derived
- Script intelligence console filters: By means of an expanded consumer interface, added talents to filter on area repute, Widespread Vulnerability and Publicity (CVE), and different script intelligence variables to investigate scripts flagged by Web page Integrity Supervisor
- PCI compliance: As a device for PII safety Web page Integrity Supervisor now proves its integrity with a full-scope PCI-DSS certification
- Single-page utility help: Web page Integrity Supervisor now supplies in-browser risk safety for web sites designed with a single-page utility structure
- Managed Safety Service: Non-compulsory service that gives occasion monitoring and alerting, assault help via the Safety Operations Command Heart (SOCC), configuration help, safety posture validation, and enhanced advisory reporting via an aligned safety knowledgeable
Prolexic helps organizations shield their total infrastructure from DDoS assaults, together with internet and IP-based purposes in knowledge facilities, cloud service suppliers, and co-location amenities.
- IP Shield: New DDoS scrubbing answer onboards buyer site visitors for particular person web- and IP-based purposes utilizing DNS redirection, permitting prospects to guard IP deal with ranges smaller than /24.
- Brazil scrubbing middle: New Prolexic scrubbing middle in São Paulo, Brazil, supplies native mitigation and improved efficiency for Latin American prospects
- Move anomaly detection: New detection know-how identifies potential DDoS assaults based mostly on circulate anomalies and supplies evaluation knowledge to SOCC employees to expedite mitigation and alerting in Safety Heart
- Improved telemetry API: Up to date API permits prospects to retrieve telemetry and historic knowledge for particular person IP addresses
Net Utility Protector
Net Utility Protector simplifies utility safety with automated and constantly up to date protections in opposition to DDoS and internet utility assaults.
- Adaptive safety profiles: Automated Assault Teams now has tailor-made safety profiles for every buyer’s particular person risk panorama; the traits of each request contribute to a risk rating that dynamically modifies protections to detect essentially the most evasive assaults
- Hostname analysis: Means that you can safely add new hostnames to an present Net Utility Protector configuration by evaluating the potential influence of WAF protections on that utility
- Seamless onboarding: New wizard lets you simply onboard WAP with integration and configuration workflows designed to streamline and simplify the onboarding course of
- Configuration APIs: New APIs to programmatically handle your WAF configuration, together with altering price management settings, updating automated assault group actions, enabling and enhancing SIEM, and extra
There shall be extra alternatives to interact with us on this and extra at Edge Stay | Adapt. Signal as much as see how prospects are leveraging these enhancements, have interaction in technical deep dives, and listen to from our executives how Akamai is evolving for the longer term.
*** It is a Safety Bloggers Community syndicated weblog from The Akamai Weblog authored by Renny Shen. Learn the unique publish at: http://feedproxy.google.com/~r/TheAkamaiBlog/~3/4gyOkmvrUd8/whats-new-in-web-security.html
cyber security news india,cyber security news sites,cyber security articles pdf,cyber attack news 2020,article cyber,cyber hack today,cisco ces,cisco wsa,latest cybersecurity trends,davos cybersecurity 2020,cybersecurity challenges 2020,new security technology 2020,cyber cold war,cybersecurity landscape 2020,list of security technologies,what is security technology,security technology articles,top 5 cyber security technologies,cybersecurity information technology list,cyber security predictions 2020,gartner security predictions 2020,security predictions 2019,cyber security forecast 2019,cybersecurity predictions 2021,trendmicro security predictions for 2020,next-generation breach detection,cyber security innovations 2019,technology used in cyber crime,context-aware behavioral analytics,what is cyber security technology,emerging trends in cyber security 2020,security trends in network security,what is security trends,automation and integration in cybersecurity,mobile devices as a major cybersecurity risk,most expensive consequences of cyber attack,emerging trends in cyber security 2019,security trends in network security ppt,application security trends 2019,explain different computer security strategy,web security ppt,web security tutorial,what is web security,importance of web security,web security threats,web application security model,cyber security news 2020,cyber security news 2019,cyber security news headlines today,cyber security news today,cyber security news articles,latest cyber security attacks,daily cybersecurity news