HPE Fortify Real-Time Analyzer

It is one thing to address security vulnerabilities in software during development or during QA testing. But what about the software you have already deployed and use every day? It may contain multiple vulnerabilities that could be exploited. Removing them may not be practical in the short term, for a variety of reasons.

What is needed is the ability to manage the risk from potential vulnerabilities until they can be fixed. The HPE Fortify Real-Time Analyzer (RTA) in HPE Fortify Software Security Center helps accomplish this by automatically blocking attacks for common vulnerabilities from inside the application and collecting data on actual attacks.

With HPE Fortify RTA, you reduce security risks in deployed Java and .NET applications, automatically block attacks for common vulnerabilities from inside applications and take advantage of flexible attack responses— block user, alert administrator, etc. As a result, you protect deployed applications—reducing risk from the most prevalent hacking techniques—and get immediate help with compliance.

Identify root security causes in deployed software, provide precision defense without tuning, enable customized attack responses and deliver sophisticated protection out of the box:

— automatically block attacks for common vulnerabilities from inside applications;

— automatically monitor Java and .NET applications and get data on actual attacks;

— take advantage of flexible attack responses—e.g., block user, alert administrator and more;

— protect applications simply and easily—requires no customization, training, coding or modeling.

Hardware Requirements

HPE Fortify Software recommends that you install HPE Fortify Real-Time Analyzer (RTA) on a high-end processor or equivalent with at least 1 GB of RAM and 545 MB of available hard disk space for the software. The installation also requires at least 60 MB of available space in the temp directory.

Supported Java Runtime Environments

HPE Fortify RTA supports the following Java runtime environments:

JRE Type Major Version
J9(IBM) 1.4.2, 1.5.0, 1.60
HotSpot(Oracle) 1.4.2, 1.5.0, 1.60
Jrockit(Oracle) 1.4.2, 1.5.0, 1.60

Supported Application Servers

HPE Fortify RTA supports the following application servers:

Application Server Versions
JBoss 4.0, 5.0, 5.1, 6.0
Apache Tomcat T4.0, 5.0, 5.5, 6.0, 7.0
Oracle Weblogic T8.1, 9.0, 9.2, 10.0, 10.3, 11g, 11gR1
IBM Websphere 6.0, 6.1, 7.0

Supported .NET Runtime Environments

HPE Fortify RTA supports the following .NET Runtime Environments:

Operating System CLR Architecture CLR .NET Versions
Windows XP 32-bit 2.0, 3.0, 3.5, 4.0
Windows Server 2003 32-bit, 64-bit 2.0, 3.0, 3.5, 4.0
Windows Server 2008 32-bit, 64-bit 2.0, 3.0, 3.5, 4.0
Windows Server 2008 R2 64-bit 2.0, 3.0, 3.5, 4.0
Windows 7 32-bit, 64-bit 2.0, 3.0, 3.5, 4.0

Support .NET Application Server

HPE Fortify RTA supports the following .NET Application Servers:

Application Server Versions
IIS 5.1, 6.7, 7.5