If you're a business owner, every hour spent worrying about criminals breaking into your website and stealing your customer's financial information is an hour you're not making your business more profitable.
That's why we created Ward.
Ward: Realtime Defense for your Websites
Ward is a full featured security suite built by Paragon Initiative Enterprises. Ward offers hands-free security so you can get back to what makes your business successful. Just installing Ward will make your web applications less vulnerable to attacks. Learn more about how Ward works.
Ward puts you in a better position simply by virtue of being deployed, but it also comes with a diverse and growing toolkit to assist highly technical teams to prevent cybersecurity risks more effectively.
Ward is appropriate for companies of all sizes. Small to medium businesses will benefit from the hands-free security benefits, while large enterprises will benefit from the value-added features Ward offers.
What Ward Does Today
Ward includes everything you'd expect a website security suite to offer, and more.
Intelligent Web Application Firewall
Ward only blocks threats that are relevant to the software you are running. For example, Ward won't waste CPU cycles attempting to block exploits targeting a Magento 126.96.36.199 vulnerability if your website is on version 188.8.131.52.
Meticulous Intrusion Detection
There are many Intrusion Detection Systems (IDS) on the market, but the ones available to PHP-based websites aren't up to our standards. Many of them use weak hash functions like MD5 to fingerprint files. Even beyond the risk of false positives/negatives caused by the use of weak hash functions, many IDS products are limited in their scope and efficacy. For example, they'll only check the filesystem for known malware samples.
Ward's IDS strives for excellence. At a base, our product uses BLAKE2 (a hash function more secure than SHA2 but faster than MD5) to identify known good/bad files. Ward also isn't limited to inspecting the filesystem; it also checks database tables, server configuration files, and shared memory for evidence of unauthorized and/or malicious code.
Automatic Security Updates
Have you ever heard about thousands of unpatched Magento sites being targeted by credit card thieves?
Or about how, if you didn't apply a critical Drupal security patch 7 hours after it was released, you should have considered your website to be hacked?
It's difficult to overstate the importance of automatic security updates to defend against ecosystem-level security threats. When implemented correctly, they keep your software robust; always adapting.
Our company has spent years making it possible to implement automatic updates to fix vulnerabilities in a way that is still secure, even if the update server gets hacked. And now you can benefit from our hard work into secure software updates, without any extra effort.
Ward will securely keep your software patched against the latest vulnerabilities. Even if our network is compromised, your systems will never be at risk.
Real-Time Application Hardening
In addition to blocking known threats and anomalous traffic, inspecting your system for indicators of compromise, and keeping your application software up to date, Ward includes a few runtime application hardening features that eliminate entire classes of vulnerabilities from ever being exploitable. It does this primarily through three mechanisms:
- Monkey-patching defensible alternatives in place of dangerous subroutines in the underlying framework of your application.
- Runtime reconfiguration (e.g. seeding weak random number generators with the kernel's CSPRNG on each request).
- Adding security headers to your HTTP responses to protect your customers.
Many of these are, presently, very specific to a product (e.g. Magento), but over time more will be introduced.
Additionally, mitigations any unpatched vulnerabilities we discover as a part of our open source security research will be provided automatically to Ward customers.
Ward Features Planned for Future Releases
In addition to the features released today, we have a lot of value-added features planned for future releases. These features will be offered at no extra cost to current customers at the time of their release:
- Encrypted backups that pass the mud puddle test.
- Security event logging with an audit trail.
- An optional firewall mode where Ward learns what good traffic looks like, and then blocks anything that looks different.
Where to get Ward?
Visit https://ward.paragonie.com to get started, and say goodbye to the security pain points that needlessly reduce your business's agility.