With its critical importance to protecting the integrity of networks, applications, and data, cybersecurity is at the forefront for businesses of all shapes and sizes. Hackers are always looking for new ways to gain unauthorized access to a system -- and accordingly, the white-hatted good guys are always looking for ways to revolutionize cybersecurity with new and innovative solutions.
The 2018 RSAC Innovation Sandbox Contest highlighted some of the cybersecurity companies that are doing interesting and ingenious things to keep your business safe. And while we here at ReFirm were a finalist in the Sandbox with our Centrifuge product for firmware security, we also know that cybersecurity for everyone is greatly enhanced when we're all working together. With that said, here are some other cybersecurity companies that joined us in the RSAC 2018 Sandbox.
BigID offers several data-based services centered around intelligence, governance, and protection related to personal identity / personally identifiable information (PI/PII) and privacy. They specialize in solutions related to data mapping and subject rights, automation, and breach response. Specifically, they created a patent-pending machine learning and identity intelligence technology that is useful if you are looking for advanced PI/PII discovery solutions.
Why we like it: With all of the personal data being collected by all of the connected devices around the world, this kind of solution has application to Big Data companies everywhere.... and it also has an important role in the new GPDR regulations in Europe, which allow individuals better access to and control of their personal data.
Update: BigID was named the 2018 Most Innovative Startup at RSAC -- big congrats to them!
Fortanix offers Runtime Encryption, promising to keep data secure whether it’s at rest, in motion, whether the threat is zero-day or coming from inside the company, or even under government subpoena. Using deterministic security, they keep keys, data and applications completely protected. It’s no wonder Fortanix was named a runner-up for 2018 Most Innovative Startup at RSAC.
Why we like it: Traditionally, data is encrypted either for transport or for storage -- but is then decrypted when it's needed inside of an application. But if the application itself has been compromised, the data it's using is now available in its decrypted form to those who've compromised the app. With so many apps collecting and using terabytes of data on a daily basis, Fortanix's Runtime Encryption looks like it's going to fill an important cybersecurity gap.
Acalvio takes a different approach to security by offering Advanced Threat Defense (ATD) solutions designed to detect and respond to malicious activity located from within your organization. Their patented products, ShadowPlex and ShadowPlex-R, use deception and data science to obtain internal data. Their autonomous deception strategy enables you to quickly and accurately detect security issues inside of your network. This technique allows you to eliminate potential threats and underlying problems before they become detrimental.
Why we like it: Hackers rely on stealth and deception to accomplish their goals. Acalvio, in some ways, is fighting fire with fire through their technologies. There's obviously an argument to be made that it's better to prevent intruder access in the first place, but hackers can be ingenious in their methods -- but once they've successfully penetrated a network, Acalvio can help mitigate the threat through a combination of lures and decoys that allows IT to steer the bad guys away from real systems, and in the process track their behavior as an aid in preventing future attacks.
If you are among the majority of businesses that integrate third-party products and services in your daily operations, you are susceptible to security breaches by these partners. To perpetuate these issues, CyberGRX offers help in identifying potential risks. They center their services around various risk management solutions aimed to help you manage and quickly respond to threats from third-parties.
Why we like it: The security chain is only as strong as its weakest link -- meaning companies that do business with or provide network access to third parties are vulnerable to intrusion via those third parties. CyberGrX provides security insights on those third parties, and in process makes everyone stronger.
BluVector offers two products centered on network security and intrusion detection: BluVector Cortex and BluVector Pulse. BluVector leverages machine learning technology which gives your business the opportunity to minimize cybersecurity incidents. Their services aim to identify such as malware attacks that are designed to avoid anti-virus and other malicious threats.
Why we like it: BluVector is utilizing AI and machine learning technologies that help companies proactively detect and analyze attacks in real-time, including attacks via fileless malware and zero-day exploits. They also have what they call a "Speculative Code Execution Engine" that simulates what a given piece of malware could do, if it was inside of a network -- a potentially valuable tool for IT departments in hardening their networks.
Wrapping It Up, Locking It Down
These are just a few of the companies from the top 10 of the 2018 RSAC Innovation Sandbox Contest. RSA conferences are always great opportunities to learn and grow within the cybersecurity industry, and we're proud to have been among the finalists.
And while a lot of the companies here focus on defeating threats post-intrusion, it's also vitally important for companies to mitigate risk by locking down devices and networks before intrusion ever happens -- which is exactly what our Centrifuge Platform was designed to do. And if you happened to miss our RSAC 2018 presentation, no worries -- you can watch it here or better yet, request a demo below and get a personalized look at ReFirm, Centrifuge, and how we can help you mitigate risks and make your business safer: