Software:AppShield

From HandWiki
Short description: Firewall software

AppShield was the world's first Application firewall. AppShield was conceptualized by Eran Reshef and Gili Raanan and was introduced to the market by Perfecto Technologies (now Sanctum) in the summer of 1999.[1] AppShield is a safeguard for many systems as it is protection for code and data.[2] The Appshield product was the first product to inspect incoming Hypertext Transfer Protocol requests and block malicious attacks based on a dynamic policy which was composed by analyzing the outgoing HTML pages.[3][4] AppShield is used to isolate the target applications registers and address space from the other applications and can utilize memory in a unique way and in return, the rootkit can't access it's memory.[5] The product faced many market adoption challenges and Sanctum was forced to introduce a complementary solution named Appscan to demonstrate the need in Application security.[6] In 2004, F5 Networks acquired AppShield's intellectual properties from Sanctum and discontinued the technology.[7] Gartner's Magic Quadrant (MQ) 2015 for Web Application Firewalls estimates that the global WAF market size is as big as $420 million, with 24 percent annual growth.[8] AppShield can rewrite application framework in Android and IOS and it will not modify the IOS for the device.[9]

References

  1. "Perfecto Technologies Delivers AppShield for E-Business - InternetNews.". 27 August 1999. http://www.internetnews.com/ec-news/article.php/190571/Perfecto+Technologies+Delivers+AppShield+for+EBusiness.htm. 
  2. Cheng, Yueqiang; Ding, Xuhua; Deng, Robert H. (2015-04-14). "Efficient Virtualization-Based Application Protection Against Untrusted Operating System". Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security. ASIA CCS '15. New York, NY, USA: Association for Computing Machinery. pp. 345–356. doi:10.1145/2714576.2714618. ISBN 978-1-4503-3245-3. https://doi.org/10.1145/2714576.2714618. 
  3. "Method and system for dynamic refinement of security policies". 2002-12-31. https://patents.google.com/patent/US20030226038A1. 
  4. "Method and system for extracting application protocol characteristics". 1999-07-01. https://patents.google.com/patent/US6311278B1. 
  5. Cheng, Yueqiang; Ding, Xuhua; Deng, Robert (2013-10-31). "AppShield: Protecting Applications Against Untrusted Operating System". http://www.mysmu.edu/phdis2008/yqcheng.2008/appshield-tr.pdf. 
  6. Messmer, Ellen. "CNN - New tool blocks wily e-comm hacker tricks - September 7, 1999". http://www.cnn.com/TECH/computing/9909/07/ecomm.hack.idg/index.html. 
  7. "Game Over? - Information Security Magazine" (in en-US). http://searchsecurity.techtarget.com/magazineContent/Game-Over. 
  8. Kolochenko, Ilia (16 February 2016). "Web Application Firewall: a must-have security control or an outdated technology?". http://www.csoonline.com/article/3032743/application-development/web-application-firewall-a-must-have-security-control-or-an-outdated-technology.html. 
  9. Qu, Zhengyang; Guo, Guanyu; Shao, Zhengyue; Rastogi, Vaibhav; Chen, Yan; Chen, Hao; Hong, Wangjun (2017). Deng, Robert; Weng, Jian; Ren, Kui et al.. eds. "AppShield: Enabling Multi-entity Access Control Cross Platforms for Mobile App Management" (in en). Security and Privacy in Communication Networks. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering (Cham: Springer International Publishing) 198: 3–23. doi:10.1007/978-3-319-59608-2_1. ISBN 978-3-319-59608-2. https://link.springer.com/chapter/10.1007/978-3-319-59608-2_1.