[Product Post] Introducing RASP. Additional Security Measures Coming to Vanilla
If you lived in a neighborhood that was anything like the Internet, you’d feel like you were living in a post-apocalyptic world. There would be a constant jiggle of your door knobs and windows as random people went around looking for homeowners who forgot to lock up.
You’d constantly be turning away not-quite-convincing delivery men trying to get in: “Hi this is FodEx, I have a delivery for Mrs Blorf”. Every now and then, someone would get upset at you for the smallest reason and barricade your front door for a few minutes or hours. Oh, and there’s no police to call.
Most people are blissfully unaware of the volume of malicious activity targeting almost every server and application on the internet: cross site scripting, SQL injections, DDos attacks, account take overs, etc. We take security very seriously and we’ve spent a lot of time and resources making our application secure.
Today, we’ve started rolling out a next-gen security technology called RASP (Runtime Application Self-Protection). In short, RASP puts security controls in our application’s runtime engine instead of in a web application firewall (WAF) that sits in front of the application. Since the security measures are incorporated into the application, they do not need to be updated each time code changes are made to the application.
How will this impact you? To follow the analogy of home security, this would be like putting an invisible security guard in each room in your house who knows exactly who is allowed to be there. You won’t see or feel anything different but we hope this will reduce the risk of a security breach.
Over the next few months, we’ll be deploying the different components of this solution to all customers. In future, for more security minded customers, we’ll be offering an enhanced RASP security package to customers on certain subscription plans.
If you’d like more information about this, please reach out to your customer success manager.