Wikipedia

Sanctum Inc.

(Redirected from AppShield)

Sanctum Inc. was a Santa Clara, California-based information technology company focused on application security. Sanctum offered a firewall, AppShield, and scanner, AppScan, for application-layer security for Web environments.[1]

Sanctum Inc.
Company typePrivate company
IndustrySoftware and information technology
PredecessorPerfecto Technologies
Founded1997
FounderGili Raanan and Eran Reshef
Defunct2006
FateAcquired by IBM
HeadquartersHerzliya, Israel,
Santa Clara, California;
ProductsAppShield and AppScan
Websitewww.sanctuminc.com (archived)

In 2003 Sanctum was merged with Watchfire and the company was subsequently acquired by IBM.[2]

History

edit

Sanctum was founded in 1997 as Perfecto Technologies, by Eran Reshef and Gili Raanan.

The company released its first product AppShield in summer of 1999.[3]

The company has done an extensive research in application security and applying formal methods to real life software[4] in collaboration with Turing Award winner Professor Amir Penueli. Early research in 1996 and 1997 led to the invention, in parallel to other teams, of CAPTCHA technology, and the application for a US patent for CAPTCHA.[5]

In 2000 the company renamed itself to Sanctum.[6] The company was backed by investors Sequoia Capital, Intel Capital, Goldman Sachs, DLJ, Walden and Mofet.[7]

Products

edit

The AppShield product was an early Web application Firewall.[8] AppShield was conceptualized by Eran Reshef and Gili Raanan and was introduced to the market in 1999.[9] AppShield worked by inspecting incoming HTTP requests and blocking malicious attacks based on a dynamic policy which was composed by analyzing the outgoing HTML pages.[10][11][12] A 2002 ZDNet article noted that in the three years following its launch, it had been used by 60 Fortune 100 companies.[13] Watchfire acquired Sanctum in 2004, and subsequently sold the intellectual property for AppShield to F5 Networks, which discontinued the product in favor of its competing TrafficShield product.[14]

In June 2000 the company introduced AppScan the world's first Web Security Vulnerability Assessment solution.[15] Among the first clients for AppScan were Yahoo!,[16] Bank of America and AT&T.[17]

References

edit
  1. ^ "What the Watchfire-Sanctum acquisition means for Web app security". Retrieved 2016-09-12.
  2. ^ "IBM Buys Watchfire". PCWorld. 2007-06-06. Retrieved 2016-09-12.
  3. ^ Messmer, Ellen. "CNN - New tool blocks wily e-comm hacker tricks - September 7, 1999". edition.cnn.com. Retrieved 2016-09-12.
  4. ^ Kesten, Yonit; Klein, Amit; Pnueli, Amir; Raanan, Gil (1999-09-20). Wing, Jeannette M.; Woodcock, Jim; Davies, Jim (eds.). FM'99 — Formal Methods. Lecture Notes in Computer Science. Springer Berlin Heidelberg. pp. 173–194. doi:10.1007/3-540-48119-2_12. ISBN 9783540665878. S2CID 41193257.
  5. ^ US20050114705A1, Reshef, Eran; Raanan, Gil & Solan, Eilon, "Method and system for discriminating a human action from a computerized action", issued 2005-05-26 
  6. ^ "Perfecto Changes Name to Sanctum - Globes English". Globes. 21 June 2000. Retrieved 2016-09-12.
  7. ^ "DLJ'S Sprout Group Leads $16 Million Investment in Perfecto Technologies; Premier Venture Firm Backs eBusiness Security Software Company. - Free Online Library". www.thefreelibrary.com. Retrieved 2016-09-12.
  8. ^ "Sanctum's AppShield". Network World. Retrieved 2024-10-05.
  9. ^ "Perfecto Technologies Delivers AppShield for E-Business - InternetNews". www.internetnews.com. 27 August 1999. Archived from the original on 2016-04-21. Retrieved 2016-09-12.
  10. ^ Messmer, Ellen. "CNN - New tool blocks wily e-comm hacker tricks - September 7, 1999". www.cnn.com. Archived from the original on April 11, 2000. Retrieved 2016-09-12.
  11. ^ "Method and system for dynamic refinement of security policies". Google Patents. 2002-12-31.
  12. ^ "Method and system for extracting application protocol characteristics". Google Patents. 1999-07-01.
  13. ^ "You need more than a firewall to stop hackers". ZDNET. Retrieved 2024-10-05.
  14. ^ "Game Over? - Information Security Magazine". Archived from the original on 2014-12-15. Retrieved 2016-09-12.
  15. ^ "Sanctum Introduces AppScan: Industry's First Automated Web Application Security Audit Tool. - Free Online Library". www.thefreelibrary.com. Retrieved 2016-09-12.
  16. ^ Network World. IDG Network World Inc. 2000-06-19.
  17. ^ "Sanctum, Inc. cited as leader in key web security sector". 5 August 2002. Retrieved 2016-09-12.
Retrieved from "https://en.wiki.x.io/w/index.php?title=Sanctum_Inc.&oldid=1263550919"