It is one thing to address security vulnerabilities in software during development or during QA testing. But what about the software you have already deployed and use every day? It may contain multiple vulnerabilities that could be exploited. Removing them may not be practical in the short term, for a variety of reasons.
What is needed is the ability to manage the risk from potential vulnerabilities until they can be fixed. The HPE Fortify Real-Time Analyzer (RTA) in HPE Fortify Software Security Center helps accomplish this by automatically blocking attacks for common vulnerabilities from inside the application and collecting data on actual attacks.
With HPE Fortify RTA, you reduce security risks in deployed Java and .NET applications, automatically block attacks for common vulnerabilities from inside applications and take advantage of flexible attack responses— block user, alert administrator, etc. As a result, you protect deployed applications—reducing risk from the most prevalent hacking techniques—and get immediate help with compliance.
Identify root security causes in deployed software, provide precision defense without tuning, enable customized attack responses and deliver sophisticated protection out of the box:
— automatically block attacks for common vulnerabilities from inside applications;
— automatically monitor Java and .NET applications and get data on actual attacks;
— take advantage of flexible attack responses—e.g., block user, alert administrator and more;
— protect applications simply and easily—requires no customization, training, coding or modeling.
HPE Fortify Software recommends that you install HPE Fortify Real-Time Analyzer (RTA) on a high-end processor or equivalent with at least 1 GB of RAM and 545 MB of available hard disk space for the software. The installation also requires at least 60 MB of available space in the temp directory.
Supported Java Runtime Environments
HPE Fortify RTA supports the following Java runtime environments:
|JRE Type||Major Version|
|J9(IBM)||1.4.2, 1.5.0, 1.60|
|HotSpot(Oracle)||1.4.2, 1.5.0, 1.60|
|Jrockit(Oracle)||1.4.2, 1.5.0, 1.60|
HPE Fortify RTA supports the following application servers:
|JBoss||4.0, 5.0, 5.1, 6.0|
|Apache Tomcat||T4.0, 5.0, 5.5, 6.0, 7.0|
|Oracle Weblogic||T8.1, 9.0, 9.2, 10.0, 10.3, 11g, 11gR1|
|IBM Websphere||6.0, 6.1, 7.0|
HPE Fortify RTA supports the following .NET Runtime Environments:
|Operating System||CLR Architecture||CLR .NET Versions|
|Windows XP||32-bit||2.0, 3.0, 3.5, 4.0|
|Windows Server 2003||32-bit, 64-bit||2.0, 3.0, 3.5, 4.0|
|Windows Server 2008||32-bit, 64-bit||2.0, 3.0, 3.5, 4.0|
|Windows Server 2008 R2||64-bit||2.0, 3.0, 3.5, 4.0|
|Windows 7||32-bit, 64-bit||2.0, 3.0, 3.5, 4.0|
HPE Fortify RTA supports the following .NET Application Servers:
|IIS||5.1, 6.7, 7.5|