What is SWAP (Smart Web Application Protection)?
In recent months, Cloudbric has overdone a major brand redesign. Along with a new look, we’re pleased to announce SWAP. SWAP is a cloud-based web application protection solution based on artificial intelligence.
Previously, Cloudbric released the beta launch of its machine learning AI (artificial intelligence) engine for users to test out via their security dashboards. Now, this soon to be patented AI technology is at the very core of SWAP.
WAP incorporates the revolutionary AI-based detection engine known as VISION into its detection capabilities along with a logic-based engine to create one of the most advanced web application protection solutions in the market. It leads with high precision detection, superseding traditional web application firewalls (WAF) and current next-generation firewalls.
How is SWAP different from cloud WAF solutions?
SWAP is one of the few AI deep learning-based WAFs in the web application security market. As a recap, Cloudbric’s in-house security developers patented a new method for feeding images into deep learning machines to recognize all web attack patterns. More specifically, VISION relies on a Convolutional Neural Network (CNN), one of the leading deep learning architectures, to extract patterns of behavior using a diverse set of attack inputs and data. (Read more details on VISION works).
Low False Positives
This is critical as it sets SWAP apart from traditional WAFs and next-generation WAFs in terms of “smart” detection capabilities and low false-positive rates. For most businesses, having a WAF security solution with low false-positive rates is essential. Because WAFs are placed are the forefront of business-critical applications, it is crucial that all legitimate traffic is able to enter. Otherwise, it puts the business’s trust and reputation on the line (and possibly loss of potential clients and revenue) if access is denied.
On the flip side, if a malicious actor is allowed entry, it puts the business organization at risk for the same concerns in addition to a damaged reputation and even millions of lost revenue if the hacker is successful in its attempts to steal customer data, knock entire websites offline, and take over accounts.
Therefore, accurate and precise detection is key. Many cloud WAF solutions rely on the WAF engine of ModSecurity, used in conjunction with the OWASP ModSecurity Core Rule Set (CRS) to detect and block web attacks. However, it becomes a tedious process to reduce false positives since it requires users to tune their WAF installation.
Precise Detection with AI & Deep Learning for WAF
Meanwhile, SWAP does this automatically for its users. SWAP uses VISION’s deep learning capabilities to learn web attack patterns, which then re-applies its learning results to more accurately identify, block, and predict future attacks. This directly contributes to SWAP’s low false-positive rate, which yields low false positives for all security events.
SWAP also uses its logic-based detection engine to thwart off web attacks and keep its rate of false positives low. The engine uses signature-less detection and 27 rulesets, also known as policies, to accomplish this and will be the main focus of our next blog.
How does SWAP protect businesses?
As a web application protection solution, SWAP responds proactively to incoming attacks by recognizing unknown attacks before they enter the web application layer. In other words, SWAP takes proactive, counterintuitive measures to prevent web attacks. SWAP provides businesses with the most accurate protection against known and unknown vulnerabilities, capable of stopping the next breach.
In a world where legacy systems still exist, such as in the fields of health and government, Cloudbric’s SWAP essentially prevents the vulnerabilities often present in a legacy application through its unique 27 rulesets from being exploited by malicious actors.
It also used proactive bot defenses to stop automated attacks. Automated attacks have proven extremely effective and dangerous specifically because bots and scripts and malware are designed to attack at scale. Now, instead of a hacker manually carrying out an attack in a sequence, a computer program can do this. Luckily, SWAP proactively defends against these kinds of attacks.
SWAP is continuously monitoring web traffic in the background to protect business-critical applications. Fortunately for the budget-minded businesses, SWAP reduces this financial burden. To learn more how we can help your business and what deployment is a best fit, please visit: cloudbric.com/website-security.