Expands SecureSphere Total Application Security Solution to Support Customers with Sybase Databases

FOSTER CITY, CA – February 14, 2005 – Imperva, Inc., the developer of the world’s first Dynamic Profiling Firewall™, today announced it has joined the Sybase® Business Solutions Alliance, delivering Sybase database users an automated solution that protects enterprise application and database assets from attack vectors including Web application hacking, internal database breaches, and worm infections.

“Imperva provides the industry’s only automated security model that also protects against all critical threats to business applications and database assets,” said Alan Norquist, vice president of marketing and business development for Imperva. “Joining the Sybase Business Solutions Alliance furthers our ability to deliver both application and database-level defenses that address this important and growing need for our mutual customers.”

“As Sybase continues to deliver innovative solutions and secure data repositories,” said Mark Wilson, Vice President of Corporate Development, Sybase, Inc., “we look to partners like Imperva to provide compatible technologies to address the need for a multi-layered security architecture.”

SecureSphere’s core technology, Dynamic Profiling, is the only technology to address the dynamics associated with securing enterprise application and database environments without requiring manual configuration or tuning. Dynamic profiling automatically learns the behavior of applications to provide security that adapts as business needs drive changes to the environment. The SecureSphere Dynamic Profiling Firewall includes multiple layers of security including:

Dynamic Database Firewall
SecureSphere’s Dynamic Database Firewall relies on the database elements of the Dynamic Profile to detect unusual database queries of any kind. Database elements include legitimate SQL queries, valid IP addresses per SQL query, valid user names per SQL query, and more. The database firewall prevents direct unauthorized queries from internal sources. SecureSphere’s Correlated Attack Validation algorithms can correlate database firewall violations with Web firewall violations to deliver overall system accuracy that is not possible by Web or Database firewalls working independently.

Dynamic Web Firewall
SecureSphere’s Dynamic Web Firewall component protects an application’s external Web interface by focusing on unique Web elements of the Dynamic Profile, including legitimate URLs, HTTP methods, parameters, cookies, response codes and hidden fields. By creating profiles that detail normal user interactions with the Web server, the Dynamic Web Firewall can recognize and block attacks targeting enterprise Web applications.

Web Worm Profiling
Day zero Web worms pose a serious threat to the global security community. Unlike known worms, which target published flaws in commercial applications that can be anticipated and blocked using signatures, day zero Web worms exploit previously unknown application vulnerabilities before a patch or signature can be distributed. SecureSphere’s Dynamic Web Profiling capabilities deliver a highly effective day zero Web worm defense that does not rely on signatures or computationally intensive techniques such as in-line code simulation. Utilizing dynamic Web profile information to identify specific combinations of attributes that uniquely identify day zero worm attacks – such as requests for unknown URLs, requests that target default Web server directories, and requests that lack legitimate host names and session IDs – SecureSphere accurately blocks these threats without relying on published signatures.

Deep Inspection Firewall
SecureSphere also supports traditional, standards-based deep inspection firewall capabilities to protect against common network layer attacks and worm infections. The deep inspection firewall provides full network access control services, including black- and white-listing to block unauthorized users or dangerous protocols. HTTP protocol checks that enforce RFC and expected usage rules are also available to block both known and unknown exploits. Industry-standard signature detection is also provided, including full Snort®-compatible signature support and multi-protocol detection of known attacks.

About the Sybase Solutions Alliance Partner Program
Sybase partners with industry leading solutions providers and resellers to bring innovative technologies to market to solve customer business problems. Committed to the philosophy that partnerships should be mutually beneficial, Sybase’s Business Solutions Alliance Program connects partners to the resources they need to profit from the relationship, including quality products, tools, training and access to marketing, business and technical support.

About Imperva
Imperva is the leader in application data security and compliance. Leading enterprise and government organizations worldwide rely on Imperva to prevent data theft and abuse, and ensure data integrity. The company’s SecureSphere products provide data governance and protection solutions that monitor, audit and secure business applications and databases. For more information, visit www.imperva.com

# # #

Imperva and SecureSphere are trademarks of Imperva, Inc. All other brand or product names are trademarks or registered trademarks of their respective holders.

Editorial Contact
Marc Gendron
(781) 237-0341
marc@mqpr.net