EMA INNOVATOR AWARD: Application Security Q2 2018
Curtail Security is a small network security startup based out of Santa Barbara, California, and led by President and CEO Frank Huerta and CTO Robert Ross. The company started business in 2015 as an advanced network intrusion detection vendor for DevSecOps, delivering its first solution in 2016 based on several of its own patents and other intellectual property.
Curtail ReGrade designed to detect flaws before software is deployed
“ReGrade enables teams to improve delivery by generating meaningful developer feedback. It can also measure the performance implications of new upgrades and allow for vetting of application stacks that were built with distinct open source alternatives. The benefits of this include the ability to verify software updates using actual traffic, find flaws before rollouts, prevent expensive rollbacks, and test apps against components of the technology stack, the company explained.”
Find bugs in your code before launch with new ReGrade platform
“Curtail Security has announced the release of ReGrade. The platform helps give customers the ability to identify critical version differences in the development cycle and eliminate the costly rework and loss of network uptime associated with late-stage discovery of software flaws and configuration errors.”
Curtail ReGrade Tests New Software with Production Traffic to Find Flaws and Bugs Before Deployment
New Technology Identifies Software Update Differences and Defects That Impact Quality and Application Security, Preventing Manual Rollbacks and Reducing Development Costs
SANTA BARBARA, Calif. — May 22, 2018 — According to the U.S. Department of Homeland Security, 90 percent of security incidents result from exploits against defects in software. Today Curtail Security™ announced the release of ReGrade. ReGrade gives customers the ability to identify critical version differences in the development cycle and eliminate the costly rework and loss of network uptime associated with late-stage discovery of software flaws and configuration errors.
With ReGrade, customers run their current software simultaneously against proposed upgrades and compare the network behavior of the old and new systems. ReGrade offers unique insights into how real network behaviors differ when systems process identical inputs sampled from production traffic. Catching software flaws earlier with ReGrade prevents costly rollbacks that occur when a new software package fails in production.
Using ReGrade allows application developers, QA and operations teams to:
• Monitor software behavior from development to production, minimizing staging of rollouts
• Reduce development costs by finding differences and fixing flaws as early as possible
• Gain insight into the scope and nature of differences between old and new software
• Improve on-time delivery by generating specific, meaningful developer feedback
• Measure the performance implications of new upgrades
• Enable vetting of application stacks built with distinct open source alternatives
Frank Huerta, CEO of Curtail Security, said: “It costs four to five times more to fix a software bug after release rather than during development. This makes early prevention key to reducing software development risks, time and costs. ReGrade uses patented comparison-based traffic analysis to help locate the primary source of differences and possible defects that impact quality and application security. It’s an easy-to-use, fast and accurate solution that allows customers to test software against production traffic, which no one else can do.”
Becky Wanta, COO & CIO, One Degree World Systems, said: “In the travel and hospitality business, network downtime is not an option. ReGrade lets us directly compare behavioral differences between new and old software versions, reducing expensive rollbacks and improving our on-time delivery. Thanks to ReGrade, our software updates are now faster and more efficient, secure and reliable.”
Amer Tadayon, CEO, p2klabs, said: “Our clients come to us in need of customized software solutions. We are involved in all phases of software design and development, and we advocate the use of flexible, cost-effective technologies for building apps. ReGrade is one of them. With ReGrade, we can quickly spot and fix issues during the dev cycle and validate upgrades early on. It saves everyone time and headaches.”
Christian Christiansen, senior consultant, Hurwitz & Associates, said: “DevOps and SecOps increasingly share the common goals of accelerating development while stopping vulnerabilities before they occur. This reduces cycle time and changes security into a competitive advantage, particularly for managed services, enterprise software publishers, IoT developers and vulnerability management teams.”
Curtail Security keeps systems available and secure using unique comparison-based network traffic analysis. For more information, visit www.curtail.com.
Nadel Phelan, Inc.
Security Startup Curtail Makes its Debut
Curtail’s software provides users with a virtualized copy of their server. If the server is attacked, Curtail shuts down that server and moves the customer’s traffic to the new server. The big differentiator is that Curtail is able to do this without causing the customer any downtime, says Frank Huerta, Curtail CEO.
The Confluence of Security and Availability: Curtail Security Launches To Keep Networks Running in the Face of Attacks or Equipment Failure
Company Unveils Network Security Offerings That Protect Organizations Against Zero-Day Attacks and APTs Without Interrupting Operations
SAN FRANCISCO — Feb. 14, 2017 (RSA Conference 2017) — Curtail Security™ announced today the launch of its line of continuous network security solutions, ReCover and UnCover™. Designed to go beyond traditional threat protection approaches, Curtail combines patented intrusion prevention, detection and response capabilities with the ability to keep systems available. Using unique redundancy-based traffic analysis to identify and isolate zero-day exploits and advanced persistent threats (APT), Curtail keeps systems protected and running in the face of attacks or equipment failure.
Protects resources without downtime: With Curtail, customers improve operational efficiency and productivity while hardening systems against faulty upgrades, configuration changes and network intrusion.
Detects and isolates zero-day attacks: Curtail’s ReCover provides a protective layer between attackers and application servers to detect and respond instantly to deviant application server behavior. ReCover monitors deep protocol interactions and compares application and session states to detect outliers in network behavior, disagreements in semantics or uncharacteristic communications in light of past traffic profiles. With ReCover, a compromised server can be isolated for analysis or shut down to disconnect an intruder while legitimate traffic is directed to redundant servers.
Thwarts APTs and insider attacks: Using patented detection capabilities, Curtail’s UnCover monitors backend servers for evidence of prior compromise, detects attacks as they happen and responds with actionable insight. Through statistical analysis of past traffic profiles, the software is able to detect mismatches in network behavior on specific ports, protocols or uncharacteristic communications and identify APTs, while protecting and diverting legitimate traffic to other redundant servers.
Supports cloud, virtual and container environments: ReCover and UnCover are easily deployed on premises and scale in virtual machine, cloud and container environments. These solutions make building and migrating application stacks to container and virtual environments more secure and available in production when testing and phasing in new software.
Designed by security experts: Curtail was founded by security experts and the leaders of Recourse Technologies (acquired by Symantec in 2002), the first company to commercialize honeypots and to pioneer protocol anomaly detection/high speed IDS, and one of the first companies to build a security management system.
Frank Huerta, CEO of Curtail Security, said: “Organizations need to be able to find and stop hackers, whether from an internal or external source, without impacting operations. Using unique redundancy analysis detection methods, we are bringing to market a solution that protects today’s complex and dynamic network environments and keeps them up and running.”
Using patented redundancy-based traffic analysis, Curtail Security identifies and isolates zero-day exploits, allowing legitimate traffic to pass through the network uninterrupted. This unique software solution protects enterprises from inside and outside attacks in the cloud, on premises, within containers or virtual machine environments, delivering continuous security and improving operations. For more information, visit www.curtailsecurity.com
Nadel Phelan, Inc.