Reblaze this week made generally available a managed cloud service, dubbed Curiefense, through which it provides a web application firewall, application programming interface (API) security, bot management, traffic control and distributed denial of service (DDoS) capabilities, among others.
Tzury Bar Yochay, Reblaze CTO, said Curiefense, at its core, is a managed reverse proxy service designed to be deployed as a virtual cloud based on containers in a matter of minutes. Designed to be integrated with cloud services from Amazon Web Services (AWS), Microsoft, Google and Digital Ocean as well as content delivery networks (CDNs), the virtual cloud platform is accessed via a web console.
Curiefense also makes use of machine learning algorithms to analyze internet traffic patterns; in addition, biometric and behavioral analysis tools can block bots that evade traditional bot mitigation techniques by mimicking human actions. As the amount of bot-generated traffic on the internet increases, eliminating what amounts to unnecessary overhead both reduces potential threats and lowers the amount of IT infrastructure consumed by bot traffic.
Bar Yochay said Reblaze was created to provide organizations with a modern security platform that integrates a suite of security technologies that have become too difficult for most organizations to master on their own. Ultimately, the goal is to provide IT organizations with a platform that simplifies implementation of DevSecOps best practices across a modern IT environment, Bar Yochay said.
Curiefense, because it is based on containers, also provides native support for Kubernetes clusters, as well as the open source Istio service mesh, with support for open source Envoy software forthcoming.
As IT organizations deploy more application workloads in the cloud, cybersecurity teams are being asked to deploy and manage a wide range of security offerings from multiple vendors that are not especially well-integrated. Reblaze is making the case for a managed service that enables security teams to create and enforce security policies without managing fragmented security infrastructure technologies on their own.
That approach differs from a traditional managed service, through which an IT services provider takes complete responsibility for managing security on behalf of the end customer.
Regardless of how it is achieved, the rate at which security technologies are moving into the cloud is accelerating. At the same time, most organizations are not able to train machine learning algorithms to detect cybersecurity threats or identify fake bot traffic. As such, the need to rely on external service providers that can make those investments on behalf of multiple customers becomes more apparent every day.
There will, of course, be multiple cloud-based security services providers. It will be up to each organization to determine the degree to which they want to rely on these services. However, as IT environments become more complex – thanks, in part, to the rise of microservices based on containers and serverless computing frameworks – the chances any internal IT security team could secure a modern IT environment without some outside help are slim to none.