Company:Sanctum Inc.

From HandWiki
Sanctum Inc.
TypePrivate company
IndustrySoftware and information technology
FateAcquired by IBM
PredecessorPerfecto Technologies
Founded1997
FounderGili Raanan and Eran Reshef
Defunct2006
HeadquartersHerzliya, Israel,
Santa Clara, California;
ProductsAppShield and AppScan
Websitewww.sanctuminc.com (archived)

Sanctum Inc. was a Santa Clara, California-based information technology company focused on application security. Sanctum offered a firewall, AppShield, and scanner, AppScan, for application-layer security for Web environments.[1]

In 2004 Sanctum was merged with Watchfire and the company was subsequently acquired by IBM.[2][3]

History

Sanctum was founded in 1997 as Perfecto Technologies, by Eran Reshef and Gili Raanan.

The company released its first product AppShield in summer of 1999.[4]

The company has done an extensive research in application security and applying formal methods to real life software[5] in collaboration with Turing Award winner Professor Amir Penueli. Early research in 1996 and 1997 led to the invention, in parallel to other teams, of CAPTCHA technology, and the application for a US patent for CAPTCHA.[6]

In 2000 the company renamed itself to Sanctum.[7] The company was backed by investors Sequoia Capital, Intel Capital, Goldman Sachs, DLJ, Walden and Mofet.[8]

In 2004, Watchfire acquired Sanctum for an undisclosed amount.[3] In 2007, Watchfire was acquired by IBM.[9][10]

Products

The AppShield product was an early Web application Firewall.[11] AppShield was conceptualized by Eran Reshef and Gili Raanan and was introduced to the market in 1999.[12] AppShield worked by inspecting incoming HTTP requests and blocking malicious attacks based on a dynamic policy which was composed by analyzing the outgoing HTML pages.[13][14][15] A 2002 ZDNet article noted that in the three years following its launch, it had been used by 60 Fortune 100 companies.[16] Watchfire acquired Sanctum in 2004, and subsequently sold the intellectual property for AppShield to F5 Networks, which discontinued the product in favor of its competing TrafficShield product.[17]

In June 2000 the company introduced AppScan the world's first Web Security Vulnerability Assessment solution.[18] Among the first clients for AppScan were Yahoo!,[19] Bank of America and AT&T.[20]

References

  1. "What the Watchfire-Sanctum acquisition means for Web app security" (in en-US). http://searchsecurity.techtarget.com/What-the-Watchfire-Sanctum-acquisition-means-for-Web-app-security. 
  2. "IBM Buys Watchfire". 2007-06-06. http://www.pcworld.com/article/132617/article.html. 
  3. 3.0 3.1 Kawamoto, Dawn (26 July 2004). "Watchfire acquires Sanctum" (in en). https://www.zdnet.com/article/watchfire-acquires-sanctum/. 
  4. Messmer, Ellen. "CNN - New tool blocks wily e-comm hacker tricks - September 7, 1999". http://edition.cnn.com/TECH/computing/9909/07/ecomm.hack.idg/index.html. 
  5. Kesten, Yonit; Klein, Amit; Pnueli, Amir; Raanan, Gil (1999-09-20). Wing, Jeannette M.. ed (in en). FM'99 — Formal Methods. Lecture Notes in Computer Science. Springer Berlin Heidelberg. pp. 173–194. doi:10.1007/3-540-48119-2_12. ISBN 9783540665878. https://archive.org/details/fm99formalmethod0000worl/page/173. 
  6. , Eran; Gil Raanan & Eilon Solan"Method and system for discriminating a human action from a computerized action" patent US20050114705A1, issued 2005-05-26
  7. "Perfecto Changes Name to Sanctum - Globes English". 21 June 2000. http://www.globes.co.il/en/article-386089. 
  8. "DLJ'S Sprout Group Leads $16 Million Investment in Perfecto Technologies; Premier Venture Firm Backs eBusiness Security Software Company. - Free Online Library". http://www.thefreelibrary.com/DLJ'S+Sprout+Group+Leads+$16+Million+Investment+in+Perfecto...-a058502258. 
  9. Dignan, Larry (5 June 2007). "IBM buys Watchfire; collects another security firm" (in en). https://www.zdnet.com/article/ibm-buys-watchfire-collects-another-security-firm/. 
  10. "IBM Acquires Security Vendor Watchfire" (in en). https://www.networkcomputing.com/network-security/ibm-acquires-security-vendor-watchfire. 
  11. "Sanctum’s AppShield" (in en). https://www.networkworld.com/article/889812/software-sanctum-s-appshield.html. 
  12. "Perfecto Technologies Delivers AppShield for E-Business - InternetNews.". 27 August 1999. http://www.internetnews.com/ec-news/article.php/190571/Perfecto+Technologies+Delivers+AppShield+for+EBusiness.htm. 
  13. Messmer, Ellen. "CNN - New tool blocks wily e-comm hacker tricks - September 7, 1999". Archived from the original on April 11, 2000. https://web.archive.org/web/20000411105516/http://www.cnn.com/TECH/computing/9909/07/ecomm.hack.idg/index.html. 
  14. "Method and system for dynamic refinement of security policies". 2002-12-31. https://patents.google.com/patent/US20030226038A1. 
  15. "Method and system for extracting application protocol characteristics". 1999-07-01. https://patents.google.com/patent/US6311278B1. 
  16. "You need more than a firewall to stop hackers" (in en). https://www.zdnet.com/article/you-need-more-than-a-firewall-to-stop-hackers/. 
  17. "Game Over? - Information Security Magazine" (in en-US). http://searchsecurity.techtarget.com/magazineContent/Game-Over. 
  18. "Sanctum Introduces AppScan: Industry's First Automated Web Application Security Audit Tool. - Free Online Library". http://www.thefreelibrary.com/Sanctum+Introduces+AppScan%253A+Industry's+First+Automated+Web...-a062851146. 
  19. (in en) Network World. IDG Network World Inc. 2000-06-19. https://books.google.com/books?id=VxsEAAAAMBAJ. 
  20. "Sanctum, Inc. cited as leader in key web security sector". 5 August 2002. http://www.israel21c.org/sanctum-inc-cited-as-leader-in-key-web-security-sector/. 



Retrieved from "https://handwiki.org/wiki/index.php?title=Company:Sanctum_Inc.&oldid=4241654"