KuppingerCole Report
Executive View
By Alexei Balaganski

TrueFort Fortress XDR

TrueFort Fortress XDR is an application detection and response platform offering integrated application behavior analysis and security for real-time visibility into critical business applications, early detection of anomalous and malicious behaviors, and proactive tuning of security policies to prevent them from turning into data breaches.

1 Introduction

The proverbial “network deperimeterization” many security experts have been constantly talking about for years is no longer just an ongoing trend – it is the new reality modern businesses have to live and operate in. With a growing number of applications, data stores, and other workloads moving to the cloud as well as the increasing number of external partners, contractors or even customers accessing them, modern corporate networks no longer resemble traditional castles with walls and moats. Rather, they resemble sprawling urban areas, loosely connected and often governed by completely different IT teams or even 3rd party companies like cloud service providers.

The unfortunate downside of this digital transformation has been a sharp increase in the number and scale of data breaches. Whether focusing on targeted attacks for purposes of industrial espionage or sensitive data theft or drive-by attacks like ransomware, cybercriminals are constantly developing new methods of infiltrating corporate IT systems and traditional perimeter security tools like firewalls cannot stop them.

Unsurprisingly, in recent years, the focus of the information security market has gradually shifted from perimeter protection towards monitoring and detecting malicious activities within enterprise networks. However, neither manually operated security information and event management platforms (SIEM) that were once presented as the ultimate solution to all security problems nor the more modern AI-powered detection and response products that came to replace them later seem to fare substantially better.

Alert fatigue and the notorious skills gap, however, are only partially to blame here. Perhaps the most fundamental reason for the inability of even the most modern detection tools to keep up with the current risk landscape is that they are still implementing a siloed approach towards cybersecurity, leaving wide gaps in coverage between individual endpoint, network-level or cloud-focused products.

The latest trend that promises to overcome these limitations of isolated tools is XDR. “X” here represents a variable that can stand for anything but is generally understood as the evolution of EDR (Endpoint Detection and Response) to include more sources than just endpoints. In this sense, XDR tools can incorporate security data from network, cloud, threat intelligence and other sources, giving analysts full understanding of every stage of a cyberattack across multiple environments. Such tools are designed to assist analysts at mitigating attacks faster by automating the remediation activities. This approach can reorient security professionals more towards user- or business-focused protection.

However, as long as such solutions continue to focus on infrastructure alone, they are going to miss all the crucial business context information that is only available through higher-level analysis. For example, without understanding the logic, behavior and business risks of corporate applications, even the most detailed analysis of network flows between them will never help an analyst to properly assess the risks of a vulnerability and to prioritize mitigation actions accordingly.

This seemingly obvious idea is the foundation of the TrueFort application analytics and protection platform. The company offers a comprehensive application-focused XDR solution to monitor modern cloud-native and hybrid workloads, detect and quickly remediate any cyber-threat and prevent data breaches, utilizing the telemetry from 3rd-party agents already deployed by most organizations.

2 Product Description

TrueFort is a privately held cybersecurity vendor headquartered in Weehawken, New Jersey, USA. The company was founded in 2015 by a group of veteran I ...

Login Get full Access

3 Strengths and Challenges

The TrueFort Fortress XDR platform implements a really unorthodox combination of more traditional (if this term can be applied to a very recent techno ...

Login Get full Access

Copyright

©2021 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole, founded in 2004, is a global, independent analyst organization headquartered in Europe. We specialize in providing vendor-neutral advice, expertise, thought leadership, and practical relevance in Cybersecurity, Digital Identity & IAM (Identity and Access Management), Cloud Risk and Security, and Artificial Intelligence, as well as for all technologies fostering Digital Transformation. We support companies, corporate users, integrators and software manufacturers in meeting both tactical and strategic challenges and make better decisions for the success of their business. Maintaining a balance between immediate implementation and long-term viability is at the heart of our philosophy.

For further information, please contact clients@kuppingercole.com.

top