profile

WAPPLES Web Application Firewall Interoperability for HPE Security ArcSight

Integration allows customers to increase effective security operations for quicker detection and response

Penta Security Systems Inc., a leading Web and Data security provider in the Asian-Pacific region, announced its partnership with HPE through the HPE Security Technology Alliance Partners (TAP) Program. The partnership allows for customers to integrate the HPE ArcSight solution with Penta Security’s web application firewall (WAF), WAPPLES.

The need for HPE ArcSight Interoperability

Recognizing the increased demand from customers, Penta Security worked with the HPE TAP program to integrate its web application firewall (WAF), WAPPLES, with HPE ArcSight. TAP supports interoperability standards between HPE Security solutions like ArcSight and third-party security solutions like WAPPLES.

A market leading WAF in the Asia-Pacific region, WAPPLES differs from traditional WAF appliances and does not require signature updates. Instead, it intelligently analyzes traffic for malicious behavior through its patented logic-analysis based engine, COCEP™, resulting in extremely low false positives.

Duk Soo Kim, head of the Planning Division at Penta Security stated, “With our market leader presence in the APAC region, our next aim is to enhance the compatibility of Penta Security solutions worldwide. Through technology integration with platforms like HPE Arcsight, we hope to offer even more customers the ability to rapidly respond and prevent the increasing cyber threats of today’s connected society.”

HPE ArcSight ESM is a comprehensive Security Information and Event Management (SIEM) platform that identifies and prioritizes threats in real-time, ensuring that enterprises can quickly respond to and remediate threats. With the ability to collect and store logs from various security devices, regardless of system log, database and file type, as well as deliver analysis with a high rate of correlation, the solution has seen high demand from customers in Asia Pacific.


About Penta Security: With over 19 years of IT security expertise, Penta Security Systems Inc. (CEO/Founder Seokwoo Lee) is recognized by Frost & Sullivan as 2016’s Asian Cyber Security Vendor of the Year. For more information on Penta Security and its encryption technology, please visit www.pentasecurity.com. For partnership inquiries, please email global@pentasecurity.com.

format preserving encryption data security sample vendor

Cited by Gartner in 2016 Hype Cycle for Data Security

Listed as sample vendors for FPE and Database Encryption, Penta Security receives attention for its developments

format preserving encryption data security sample vendorSeoul, Korea: Penta Security Systems Inc., a leading Web and Data security provider in the Asian-Pacific region, announced that it has been listed as a sample vendor for two technologies, Format Preserving Encryption (FPE) and Database Encryption, in the Gartner 2016 Hype Cycle for Data Security.[1] Each year, Gartner, Inc. publishes visual representations of maturity and adoption of various technologies and applications. It cites vendors that are relevant to business development in the particular field. Within the last year, numerous corporations and entities worldwide have had their data breached. This further highlights the need for data security and encryption technologies.

Database Encryption

In 2016’s Hype Cycle for Data Security, Penta Security was cited as a sample vendor for Database Encryption. Database Encryption is in the early stages of mainstream in terms of maturity. Penta Security’s Head of Planning, Duk Soo Kim stated, “After research and development over the course of many years, we’re pleased to see the technology becoming increasingly prevalent in the market. As the industry continues to develop and mature, we will most certainly be keeping up with the latest in database encryption technology.”

FPE (Format Preserving Encryption)

Additionally, Penta Security was listed under Format Preserving Encryption as a sample vendor. Still largely a new field, FPE allows for encrypted data to maintain its structure with minimal modifications. While previously less utilized, its adoption has become more widespread due to NIST (National Institute of Standards and Technology) establishing secure FPE implementation standards. Regarding this listing in the Hype Cycle, Kim remarked, “Technology and security are constantly changing and being challenged. Therefore, being named as a sample vendor for a technology like FPE confirms that we are implementing technologies taken on by early adapters, not just traditionally utilized.”

Penta Security is a leading vendor for data security solutions, including its encryption solution, D’Amo. By using FPE technology, D’Amo allows for implementation of encryption technology to sensitive data fields without modification to schema in the database environment.  With businesses having their data become increasingly more complicated in their mission-critical applications (such as ERP, CRM, HRM), continued attention to data security practices is crucial.

Disclaimer:

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About Penta Security:

With over 19 years of IT security expertise, Penta Security Systems Inc. (CEO/Founder Seokwoo Lee) is recognized by Frost & Sullivan as 2016’s Asian Cyber Security Vendor of the Year. For more information on Penta Security and its encryption technology, please visit www.pentasecurity.com. For partnership inquiries, please email info@pentasecurity.com.


[1] Gartner, Hype Cycle for Data Security, 2016 by Brian Lowans, July 13, 2016: https://www.gartner.com/doc/3371735/hype-cycle-data-security-

Asian Cyber Security Vendor of the Year: Honored for 2016

APAC market leader Penta Security Systems Inc. awarded by Frost & Sullivan

frost sullivan cyber security vendor awardSeoul, Korea: On June 15, Penta Security Systems Inc. was awarded the honor of Frost & Sullivan Asian Cyber Security Vendor of the Year. The award was given at this year’s 13th annual Frost & Sullivan Asia Pacific ICT Awards Banquet in Singapore.

Cyber Security Vendor

Frost & Sullivan selected Penta Security Systems after concluding evaluations with a team of 30 analysts and consultants based in the Asian-Pacific region. Analysts examined a variety of indicators including revenue growth, market share, leadership in product innovation, major customer acquisitions, and business and market strategy. Specifically, Frost & Sullivan noted that Penta Security continues to make headway into new industries with its smart car security solution, AutoCrypt. AutoCrypt detects vehicular attacks from external systems utilizing its Application Layer Firewall, and has garnered significant attention with the increase in the news of vulnerabilities in smart cars.

CEO and Founder Seokwoo Lee attended the annual ICT Awards Banquet in Singapore in order to receive the award.

Regarding reception of the award, he stated, “We are honored to receive the Asian Cyber Security Vendor of the Year award. It confirms the 19 years of hard work we have put into development in information security.” He added, “We will continue to pursue excellence and growth in web and data security – not only in APAC, but worldwide.”

Having built relationships globally among enterprises and institutions, Penta Security Systems has grown rapidly along with the rise in demand for web and data security products. In 2015, its web application firewall (WAF) WAPPLES was acknowledged by Frost & Sullivan as the leading WAF in the APAC region in terms of market share.  The top WAF in Korea for three consecutive years, WAPPLES boasts a COCEP™ (Contents Classification and Evaluation Processing) engine, rather than traditional pattern-matching methods utilized by other cyber security vendors.


About Penta Security:

Penta Security Systems Inc. was founded in 1997 by CEO Seokwoo Lee. The company is a market leading provider of web and data security products, solutions, and services in the APAC region. Penta Security protects more than 117,000 websites. Additionally, it blocks more than 108,000,000 web attacks per month. Recognized by Frost & Sullivan, Penta Security Systems is the top Web Application Firewall vendor in the APAC Region based on market share.

For more information on Penta Security, please visit www.pentasecurity.com. For potential partnership inquiries, please send an email to info@pentasecurity.com. For more details on the Asia Pacific ICT Awards, please visit http://www.ict-awards.com/.

Best SME Security Solution at 2016 SC Magazine Awards Europe

Cloudbric recognized for its Web Application Firewall (WAF) and website analytics features,
designed for small to mid-sized businesses

Seoul, Korea: On June 7th, Penta Security Systems announced that Cloudbric, its full-service website security solution, was chosen as the winner of the Best SME Security Solution in the Industry Leaders category at the 2016 SC Magazine Awards Europe. The award was presented at the annual SC Awards Gala. It was held this year at the stunning Old Billingsgate venue in London. Penta Security was present along with other competitive industry names such as Sophos and Barracuda Networks.

penta security global team at sc magazines holding award

Each year, a panel of IT security experts from the private and public sectors reviews hundreds of entries. They narrow the field down to a select group of finalists. The finalists then go through a rigorous, in-depth analysis that includes applicable research, analyst reports, and/or product reviews. Cloudbric was selected as this year’s winner in Best SME Security Solution. The decision was made after a thorough and comprehensive analysis of each finalist.

“It is so important to encourage and praise innovation, recognize those who raise the bar, and reward exemplars who facilitate best practice. Cloudbric is a great example of this within the industry,” remarked Tony Morin, Editor in Chief, SC Magazine UK.

Best SME Security Solution

With Cloudbric, all customers receive comprehensive website protection features including a Web Application Firewall (WAF), CDN, and SSL, as well as timely and attentive customer support regardless of the payment plan. Especially the WAF, utilizing Penta Security’s patented logic-analysis engine, COCEP™ (Contents Classification and Evaluation Processing), provides customers with deeper assurance in their website protection. Additionally, with the Cloudbric dashboard, users can easily manage their businesses with more reliable numbers. This allows them to make more informed marketing and budgeting decisions. The judges of the SC Magazine Awards Europe agreed that the entry was a strong response.

Head of Planning at Penta Security Systems, Duk Soo Kim stated,security solution winner award banner for european awards in 2016

“Through its 19-year-history, Penta Security has sought to bring quality, unrivaled web security to the global market. This was further confirmed for us after reception of the Cyber Defense Magazine Awards back in March for our WAF, WAPPLES, and open source DB encryption solution, MyDiamo. Now, Cloudbric joins the ranks, and we look forward to its continued achievements worldwide.”


About Cloudbric

Cloudbric is an elite full service website security solution specifically designed for IT novices, entrepreneurs, and small and medium businesses. First launched in 2015, Cloudbric is based on the enterprise level Web Application Firewall by Penta Security Systems, a global information security firm headquartered in Seoul, Korea. Penta Security has served more than 3,100 customers for over eleven years. For more information on Cloudbric’s web security service, please visit https://www.cloudbric.com or contact support(at)cloudbric(dot)com.

About SC Magazine

SC Magazine Awards Europe is lauded as one of the most prestigious awards for IT security professionals and products. For more information and a detailed list of categories and winners, please visit http://www.scawardseurope.com/.

Web Application Threat Trends: Penta Security Systems Releases Bi-Annual Report

Second half of 2015 sees sharp increases in hacking attempts targeting website vulnerabilities

Seoul, Korea: Penta Security Systems Inc. has released its bi-annual Web Application Threat Report. Data is collected from detection reports gathered and analyzed in the second half of 2015. It is compiled from approximately 1000 separate units of Penta Security’s Web Application Firewall (WAF), WAPPLES. The units are from customers who have consented to the threat report. Penta Security does not release any sensitive customer data. Through this report, customers are able to gain insight on the newest trends in web application threats, and gain assistance in planning accordingly for future attacks.

Web Application Threat Trends:

In the second half of 2015, the threat report found that a significant portion of the attacks were Vulnerability Assessment attacks (roughly 400 million detections). Many were labelled as “Critical” in terms of risk levels. Vulnerability Assessment refers to when attempts are made to determine the vulnerabilities of a web server.

For web attacks corresponding to OWASP (Open Web Application Security Project) Top 10 attacks, Injection was the most prevalent, at 31%. Injection, where malicious codes are inserted in order to attack applications, causes extensive damage despite the comparatively easy execution process. Second, a high detection was measured for Security Misconfiguration at 26%. Security Misconfiguration attacks are when security settings are re-defined and the system is compromised. This can give hackers access to private data.

The report additionally includes the “WAPPLES Black List Top 30,” a list of source IPs from various countries and networks that have been categorized as spam or hacking with high danger levels.

Penta Security’s Head of Planning, Duk Soo Kim, stated:

web application threat trends“When infiltrators to the system succeed in their target, there could be a multitude of issues as a result of attacks: information leakage, defacement, and even complete server malfunction. Our hope is that through our analytical reports, there can be a push for better access control in order to better prepare to face these types of trends head-on, especially for those responsible for server security.”

For the full copy of the web application threat trends report from the second half of 2015, please visit the Reports section of the Penta Security Systems website.


About Penta Security:

Penta Security Systems Inc. (CEO/Founder Seokwoo Lee) is a leading provider in data and cyber security solutions and services. With over 19 years of IT security expertise, Penta Security is recognized by Frost & Sullivan as the top Web Application Firewall vendor in the APAC region based on market share. For more information on Penta Security Web security services, please visit www.pentasecurity.com/en. For potential partnership inquiries, please send an email to info@pentasecurity.com

Finalist for the SC Magazine Awards 2016 Europe

Shortlisted for the Best SME Security solution category

Penta Security Systems Inc, a global information security company headquartered in Seoul, has been named as a finalist for the SC Awards 2016 Europe for outstanding industry leadership in information security. Cloudbric is one of five total finalists being recognized in the Best SME Security Solution category. The category acknowledges superior services that help customers address the most pressing cyber-security threats. The winners will be announced at the SC Magazine Awards Europe ceremony to be held in London on Tuesday 7th June at a stunning new central London venue on the Riverside of the Thames, Old Billingsgate.

SC Magazine Awards Europe

The SC Magazine Awards Europe is the information security industry’s most prominent recognition. Winners in the Threat Solution categories are decided by an expert panel of judges. They are hand-picked by SC Magazine UK’s editorial team. Breadth of knowledge and experience in the information security industry are crucial. The awards honor both the cyber-security professionals working in the trenches. Additionally the products and services that help protect today’s corporate world from a myriad of ever-changing threats are considered.

“Penta Security’s website protection solution represents some of the most innovative and effective security technologies on the market today,” said Tony Morbin, Editor in chief SC Magazine UK. “As attackers develop and deploy new approaches to compromising sensitive information, companies are challenged to keep pace. Cloudbric was named an SC Award finalist for its efforts to raise the bar for the security industry.”

security solution cloudbric

What is Cloudbric?

Cloudbric is an elite full service website security solution specifically designed for small to mid-sized businesses. Penta Security Systems has found most SMEs do not have the proper resources to counteract malicious web attacks. Most attacks target sensitive customer data. Therefore, Penta Security launched Cloudbric in early 2015 to better serve the SMB market. Cloudbric offers a free enterprise level security package regardless of business size. TJ Jung, VP of Product & Technology for Cloudbric, said:

“Unlike mainstream security vendors that prefer to charge website owners per premium security feature, Cloudbric provides a full suite of website security features, such as web application firewall, CDN, SSL, DDoS protection, as a set standard.”


About Penta Security Systems

Penta Security is a global information security firm headquartered in Seoul, South Korea. It specializes in web application security, database encryption, as well as access management. With over 19 years of IT security expertise, Penta Security blocks more than 108,000,000 web attacks per month. Recognized by Frost & Sullivan, Penta Security Systems is the number one Web Application Firewall vendor in the APAC Region based on market share. For more information about Penta Security and Cloudbric, please visit http://www.pentasecurity.com/en and http://www.cloudbric.com or contact Cloudbric at support@cloudbric.com.


About SC Magazine UK

SC Magazine UK provides IT security professionals with in-depth and unbiased information through timely news, comprehensive analysis, cutting-edge features, contributions from thought leaders and the best, most extensive collection of product reviews in the business. By offering a consolidated view of IT security through independent product tests and well-researched editorial content that provides the contextual backdrop for how these IT security tools will address larger demands put on businesses today, SC Magazine UK enables IT security pros to make the right security decisions for their companies. Besides the quarterly print magazine, special Spotlight editions and daily website, the brand’s portfolio includes the SC Congress and Expo series (London, Amsterdam, New York, Chicago, Toronto), SC Awards, Roundtables, Webinars and SC Magazine Newswire.

Honored at 2016 Cyber Defense Magazine Awards

Penta Security’s WAPPLES and MyDiamo Win at the 4th annual awards

On February 29th, 2016, it was announced that Penta Security would be honored with two awards by Cyber Defense Magazine (CDM). CDM is one of the industry’s leading electronic information security magazines. It is also the official media partner of the RSA® Conference 2016. Penta Security’s WAPPLES was chosen as the Hot Company in Web Application Security for 2016. MyDiamo was awarded the Editor’s Choice in Data Leakage Prevention for 2016.

Cyber Defense Magazine

Cyber Defense Magazine, along with a panel of leading independent information security experts, performs thorough research and review of potential award nominees for various security categories. The panel is also recognized for multiple cyber security related certifications, such as Certified Information Systems Security Professional (CISSP), Founding Member of the Department of Homeland Security (FMDHS), and Certified Ethical Hacking (CEH).

WAPPLES

Penta Security was honored for their Web Application Firewall (WAF), WAPPLES, which is powered by a patented Logic Based Analysis Engine. This detection technology enables WAPPLES to intelligently detect and filter web attacks at a higher accuracy rate with lower false positives than other industry competitors. WAPPLES is currently the number one Web Application Firewall in the APAC region based on market share. Additionally, WAPPLES technology also powers other cloud based solutions from Penta Security. Some of these include WAPPLES V-Series, which can be customized for any virtual or cloud infrastructure, and Cloudbric, a cloud based WAF service targeted for small and medium businesses.

“We’re thrilled to recognize next-generation innovation in the information security marketplace and that’s why Penta Security has earned this award from Cyber Defense Magazine. Some of the best INFOSEC defenses come from these kinds of forward thinking players who think outside of the box,” said Pierluigi Paganini, Editor-in-Chief, Cyber Defense Magazine.

MyDiamo Recognition

Additionally, recognition was given to Penta Security’s MyDiamo, an engine-level encryption software for open source databases. OSS DBs include MySQL, MariaDB, and PerconaDB. From 2013 to present, MyDiamo has been downloaded over 2,000 times. It has become a leading open source database encryption software.

“The recognition of MyDiamo and WAPPLES from Cyber Defense Magazine further validates our company as an innovator. It is a great endorsement, and shows that we can provide quality products for maximum security,” said Duk Soo Kim, Penta Security’s Head of Product Planning.

For more information on Penta Security or Cloudbric web security services please visit www.pentasecurity.com/en and www.cloudbric.com. For potential partnership inquiries, please send an email to info@pentasecurity.com or info@cloudbric.com.

WAF Market Leader in APAC For Third Consecutive Year

Frost & Sullivan announces Penta Security as the leader among WAF Vendors

Penta Security Systems Inc., a leading Web application and database security vendor, was recently announced to be the market leader among Web Application Firewall (WAF) Vendors in the Asia-Pacific (APAC) region. Selected by Frost & Sullivan, a globally recognized market research and consulting firm in the Frost Industry Quotient (IQ): Asia-Pacific Web Application Firewall Vendors, 2015 report, Penta Security’s WAF solution, WAPPLES, held the largest market share in APAC.

Frost & Sullivan is an North America-based company with more than 50 years of global research and consulting expertise. Each year, they publish the Frost IQ report, which presents an objective assessment of the IT industry.

WAF Market Vendors

As mentioned before,  Penta Security was reported as having the highest market share percentage in APAC. This places them ahead of China-based information security vendor NSFOCUS and more well-known vendors such as Imperva and F5 Networks. The report highlighted a few of the key factors that contributed to the dominance of WAPPLES in the APAC WAF market. WAPPLES runs on the superior performance of Penta Security’s proprietary logic analysis based engine, which attributes to its position as the long-running market share leader in Korea.

Penta Security also maintains strong relationships with its partners. It reaches out through regular seminars, technical support, and continued efforts to satisfy the needs of its customers. The benefiting results provide a deep insight into market demands.

waf on virtual appliance with cd and box

Penta Security leveraged its experience from building an extensive network of partnerships domestically as a foundation for establishing its regional network of international partners. WAPPLES offers deployment through a dynamic array of high-performance WAPPLES appliances or the WAPPLES V-Series, a virtual version of WAPPLES for the cloud. The intuitive WAPPLES Management System simplifies WAF management and provides robust web protection. In addition, customers are able to have a better grasp of the cyber security threat landscape with access to both the WAPPLES Management Portal as well the web attack trend reports published every year in Korean, Japanese, and English. It is these sorts of commitments that put Penta Security at the top of Frost & Sullivan’s list.

10 Years

Penta Security’s CTO, Duk Soo Kim says,

“It’s been 10 years since we first launched WAPPLES. To hear news that it’s leading the WAF market in the APAC region holds deep meanings for me. It makes me proud of our staff that their hard work over for the past 10 years. It shows that it was not in vain.” He continues, “We reached the top domestically and now in APAC. But it’s not the end. We will continue to pour all our efforts into developing great products and become a top global leader.”

More information on Penta Security can be found at www.pentasecurity.com. For more information regarding specific products or opportunities, contact global@pentasecurity.com

Penta Security Speaker Featured at ISEC 2015

Cloud Security, What’s the Current Status?

Korea’s 9th Annual Information Security Conference (ISEC 2015) was held from September 7th to 8th at the COEX conference center in Seoul. Penta Security Systems Inc.’s Head of Cloudbric Services, Mr. Taejoon Jung, was a featured guest speaker on Day 1 of the conference. He gave a presentation introducing Security as a Service (SECaaS). The presentation was titled “The Current Status And Outlook For Cloud Security Services, SECaaS.”

The SECaaS Market

It is getting difficult for existing appliance-based products to meet the security requirements of the growing number of both personal and enterprise users moving to a cloud environment. Among cloud-based security solutions, the SECaaS market is especially expanding its presence. However, the SECaaS market in South Korea is only in its infant stage in comparison to the global market. Jung explained that due to the development of the cloud market there have been many changes in security requirements. His talk explored the current state of SECaaS and the role it has to play in the future of the cloud environment. He capped off his presentation with the introduction of  “Cloudbric.” Cloudbric is the first Web Application Firewall (WAF) offered as a SECaaS in Korea.

Cloudbric is an elite full service website security solution specifically designed for small to mid-sized businesses. Setting itself apart from mainstream security vendors that prefer to charge per security feature, Cloudbric provides a full suite of website security features, such as web application firewall, CDN, SSL, DDoS protection, as a set standard.


For more information about Penta Security, please visit http://www.pentasecurity.com. For Cloudbric, visit http://www.cloudbric.com or contact Cloudbric at support@cloudbric.com.

Penta Security releases “AutoCrypt,” a solution for intelligent vehicle security

Integrated technologies that are mandatory for intelligent vehicle security

Data encryption and web security provider Penta Security Systems Inc. announced the release of “AutoCrypt,” a new brand for intelligent vehicle security on August 7, 2015.

Cars have come a long way from a mere power engine to the high-tech vehicles of today through convergence with various information technologies. Intelligent vehicles are human-friendly cars. They can recognize the internal and external situation, provide protection and convenience, and communicate with drivers. Recently released cars have GPS installed as default, and there are NFC, Bluetooth, Wi-Fi, LTE, and 4G technologies integrated in to them. This is in order to connect with internal and external devices. With that being said, people expect intelligent vehicles to be the heart of IoT in the future.

However, these connections can be used as a path for various hacking attempts, which is a side effect of these technologies. Security for automobiles including intelligent vehicles can be a threat to people’s lives directly. It is safe to say that car security is more important than any other ICT security.

AutoCrypt, Smarter and Safer Driving

The newly released AutoCrypt is an intelligent vehicle security solution researched and developed for 7 years at Penta IoT Convergence Lab(PICL). The solution includes the world’s first WAF for cars. This detects all attacks that comes from external systems to the car’s internal system through application layer (L7). It also manages the life cycle of various encryption keys that are used inside of the car, certificate, internal secured communication, and external secured communications. All of these are mandatory for intelligent vehicles.

Also, AutoCrypt secures the communication between a car and external things. It provides Secure Credential Management(SCM) system that manages and audits all records of encryption keys and certificates that are used within a vehicle including Certified Authority(CA), Registration Authority(RA), Linkage Authority(LA) that vehicle PKIs consist of.

Penta Security CTO Duk Soo Kim remarked, “We have tried to protect the assets of enterprises and people, but intelligent vehicle security protects people’s lives. Last year, Penta Security was able to start a product line of car security solutions. We have developed a vehicle communication technology that meets international standards. It was the first among Korean companies. Now, we are happy to announce that we have released the intelligent security brand AutoCrypt. We will continuously try to develop innovative solutions like AutoCrypt as a market leader in Korea.”

For more information regarding Autocrypt, head to Penta’s car security page. To contact regarding possible partnerships, please email mktg@pentasecurity.com.