Press Releases

Independent Research Firm's Report Names Application Security, Inc. Offering the "Most Comprehensive Database Security Solution" on the Market
Ever-increasing Information Security Vulnerabilities, Expanding Regulatory and Compliance Requirements Make Database Security a Top Priority for Enterprises

New York, NY -- April 5, 2005 -- Application Security, Inc. (www.appsecinc.com) today announced that leading research firm, Forrester Research, just issued a report that highlights the company as offering "the most comprehensive database security solution, covering data-at-rest encryption, assessment, auditing, and intrusion detection and prevention."

AppSecInc is the leading provider of proactive security solutions for corporate and government applications.

In the report, "Comprehensive Database Security Requires Native DBMS Features and Third-Party Tools***," released on March 29, 2005, Forrester believes that "with growing incidence of intrusions across industries and strong regulatory requirements to secure private data, enterprises need to make DBMS security a top priority...and that the demand for encryption, auditing, and assessment will grow in the coming years, driven largely by regulatory compliance requirements."

Authored by Forrester database security authority Noel Yuhanna, the report states, "The key to a successful DBMS security implementation is knowing what you are protecting, why you're protecting it, and how best to secure the data, especially when dealing with private data." Emphasizing the need for database security solutions beyond what is offered by traditional DBMS vendors, Forrester adds "…Although DBMS vendors will continue to extend their security solutions in the near term, we believe that the specialized vendors are likely to maintain their edge with simplified and more innovative, integrated, and intelligent security solutions."

Additionally, the report stresses, "Today most of the advanced DBMS security functions are provided by small specialized vendors… These vendors focus primarily on addressing functional gaps around data-at-rest encryption, backup encryption, security assessment, granular auditing, and intrusion detection and prevention. Application Security offers the most comprehensive database security solution, covering data-at-rest encryption, assessment, auditing, and intrusion detection and prevention."

"Organizations of all sizes are learning that what they've done to fortify their information security and privacy hasn't done enough to directly protect their most valuable assets - the data," said Ted Julian, VP Marketing, AppSecInc. "Forrester's report presents perfectly the requirements for best-in-class database security. Doing it right requires an end-to-end approach encompassing encryption, assessment, auditing, and intrusion detection and prevention. We're pleased that Forrester has acknowledged AppSecInc for having the most comprehensive database security solution on the market."

Delivering the industry's only complete vulnerability management solution for the application tier, AppSecInc's product portfolio includes:

• AppDetective - the most widely deployed, network-based vulnerability assessment scanner that discovers, assesses and protects database applications
• AppRadar - the industry's only real-time database intrusion detection and auditing solution that combines the most extensive set of application-specific protections with highly granular and easily customized real-time monitoring, and delivers best-practices security, which can be easily tuned to address unique security and regulatory requirements
• DbEncrypt - one of the most comprehensive encryption tools that transparently encrypts the most sensitive data at the column level on production databases
• AppSecIncConsole - a Web-based application security management console that provides role-based access and easy scaling of AppDetective and AppRadar deployments throughout an enterprise, with no impact on business operations

With Visa as an investor/strategic partner and one of its 300+ customers worldwide, AppSecInc is the market share leader in the rapidly growing sector of database security. Led by a team with unmatched database security expertise, company executives have previously founded security industry forerunners including DbSecure (acquired by Internet Security Systems), @Stake (acquired by Symantec), Raptor (now part of Symantec) and Arbor Networks. Notably, AppSecInc Co-founder Aaron Newman is the world's foremost database security expert and co-author of the Oracle Security Handbook.

About Application Security, Inc.
AppSecInc is the leading provider of application security solutions for the enterprise. AppSecInc's products - the industry's only complete vulnerability management solution for the application tier - proactively secure enterprise applications at more than 300 organizations around the world. By securing data at its source, we enable organizations to more confidently extend their business with customers, partners and suppliers while meeting regulatory compliance requirements. Our security experts, combined with our strong support team, deliver up-to-date application safeguards that minimize risk and eliminate its impact on business. Please contact us at 1-866-927-7732 to learn more, or visit us on the web at www.appsecinc.com.

AppSecInc, AppDetective, AppRadar and DbEncrypt are trademarks of Application Security, Inc. All other company and product names are trademarks of their respective companies.

***"Comprehensive Database Security Requires Native DBMS Features and Third-Party Tools," Forrester Research, Inc., March 29, 2005.

Media Contacts
Christine Atkinson
CHEN PR, Inc.
Tel: (781) 466-8282, ext. 39
E-mail: catkinson@chenpr.com

Rebecca Knowles
Application Security, Inc.
Tel: (781) 276-4508
E-mail: rknowles@appsecinc.com