Stratum8 To Roll Out Partner Strategy

The startup's APS-100 appliance protects Web applications by filtering HTTP traffic and blocking or flagging activity that doesn't fit acceptable use of the application, said Rich D'Angelo, vice president of sales at Stratum8, based here.

APS-100 doesn't use signatures or patterns to block attacks, D'Angelo said. Instead, it "learns" the behavior of a company's application to prevent threats such as session tampering and buffer overflows, he said.

The 1U rack-mountable device runs a hardened Linux kernel.

\

One APS-100 supports five to 10 Web servers, depending on traffic volume.

Stratum8's authorized reseller program is designed for regional, security-focused solution providers serving e-commerce and government clients, D'Angelo said. The program includes a demo unit, lead generation, sales and technical training, a dedicated sales representative and co-marketing support.

id
unit-1659132512259
type
Sponsored post

D'Angelo said APS-100 fits well into a security solution provider's arsenal and provides protection that traditional network-based security technologies don't. Firewalls don't protect against attacks coming through Port 80, which is where Web traffic flows, he said.

"It's a very unique device, and from a VAR perspective, it complements our security practice," said Tom Shaw, president and CEO of Wide Area Management Services (WAMS), a network systems integrator based in Santa Clara.

Protecting Web applications is key because enterprises typically design such applications with ease of use in mind rather than focusing on security,

he said.

Shaw said he likes Stratum8's channel strategy, which focuses on a select group of integrators, because "the product will not be overdistributed."

Greg Hanchin, principal at DirSec, a security integrator based in Centennial, Colo., said it's important to protect against attacks specific to Internet applications. Stratum8 takes a unique approach by using the HTML interaction model to look for abnormalities in the HTTP header, he said.

APS-100 "is simple to implement, easy to deploy and cost-effective," Hanchin said.

One APS-100 can support five to 10 Web servers, depending on traffic volume, D'Angelo said. The device costs $25,000, and volume discounts are available. Stratum8 offers VAR partners margins ranging from 20 percent to 45 percent, he said.

Other vendors selling solutions in the emerging Web application security appliance market include Sanctum and KaVaDo.