Arc XP 利用 Datadog 的实时可视性确保生产中的应用程序安全
公司规模
Large Corporate
国家
- United States
产品
- Arc XP
- Datadog Application Security Management (ASM)
技术栈
- Cloud-native digital experience platform
- Runtime application self protection (RASP)
实施规模
- Enterprise-wide Deployment
影响指标
- Cost Savings
- Customer Satisfaction
- Productivity Improvements
技术
- 平台即服务 (PaaS) - 应用开发平台
适用行业
- Software
适用功能
- 离散制造
- 质量保证
服务
- 云规划/设计/实施服务
- 网络安全服务
关于客户
Arc XP 是一个云原生数字体验平台,可帮助组织创建和分发内容、实现网站盈利和推动电子商务,并提供多渠道数字体验。Arc XP 的数字体验平台是一个集成的云原生工具生态系统,具有敏捷的内容管理系统、一套数字订阅工具、内置数字资产管理、视频交付以及前端体验和内容交付平台,使全球各地的组织能够创建和分发内容,并改变他们向客户讲述故事的方式。Arc XP 的庞大规模使组织能够有效地实现网站盈利、推动电子商务,并快速、可靠、安全地提供多渠道数字体验。自 2014 年推出以来,Arc XP 经历了爆炸式增长。如今,它为超过 25 个国家/地区的客户提供服务,在超过 2,000 个网站上每月提供超过 80 亿次独立页面浏览量。
挑战
Arc XP 希望增强其安全监控能力和纵深防御策略,以便能够快速检测并应对针对其 Web 应用程序和 API 的攻击。作为一家拥有独立运营部门的组织,Arc XP 希望拥有一个单一事实来源,以便其不同团队之间能够更有效地协作。此外,Arc XP 需要检测其客户代码中的可疑行为。Arc XP 平台允许客户在 Arc XP 应用程序中运行自己的代码,从而创建一个共享安全责任模型,Arc XP 负责平台,其客户负责其代码。
解决方案
Arc XP 工程师研究了几种解决方案,包括运行时应用程序自我保护 (RASP) 解决方案,但发现投资回报率并不令人满意。该公司最终选择添加 Datadog 应用程序安全管理 (ASM),以保护其生产平台并实时查看针对其环境的攻击。Datadog 的分布式跟踪功能使 ASM 能够显示深入的见解,例如用户归因和通过每个微服务的攻击流程。这有助于团队了解是否需要优先考虑响应工作,如果需要,则确定如何补救。Datadog ASM 的监控功能使 Arc XP 工程师能够查看他们的哪些服务处于危险之中、何时受到攻击以及这些攻击是否会触发漏洞。此外,ASM 还显示了触发潜在漏洞的确切功能、匹配的规则、攻击使用的查询以及如何解决问题的建议,从而实现更快的补救。
运营影响
数量效益
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
相关案例.
Case Study
Infosys achieves a 5–7 percent effort reduction across projects
Infosys, a global leader in consulting, technology, and outsourcing solutions, was facing significant challenges in application development and maintenance due to its distributed teams, changing business priorities and the need to stay in alignment with customer needs. The company used a mix of open source, home-grown and third-party applications to support application development projects. However, challenges resulting from distributed teams using manual processes increased as the company grew. It became more and more important for Infosys to execute its projects efficiently, so they could improve quality, reduce defects and minimize delays.
Case Study
Arctic Wolf Envelops Teamworks with 24x7 Cybersecurity Protection and Comprehensive Visibility
Teamworks, a leading athlete engagement platform, faced rising cyberthreats and needed enhanced visibility into its network, servers, and laptops. With software developers connecting from all over the world, the company sought to improve its security posture and position itself for future growth. The company had a secure platform but recognized the need for a more proactive solution to identify gaps within its technology infrastructure. Data exfiltration and malicious access were top concerns, prompting the need for a comprehensive security upgrade.
Case Study
Sawback IT and Datto Save Client From a Costly Mistake
Ballistic Echo, a software development house, faced a critical challenge when human error led to the deletion of thousands of lines of unique code. This incident occurred before the code was pushed to source control, resulting in significant loss of time, revenue, and work. The previous file-level backup solution they used was slow and inefficient, making it nearly impossible to manually recreate the lost work. The need for a more reliable and efficient business continuity solution became evident to avoid such disasters in the future.
Case Study
Opal Helps Customers Shine Thanks to Datto
SP Flooring & Design Center faced a ransomware attack that encrypted and locked their files. The attack was initiated through a compromised service account set up by an outside vendor. The ransomware infection was isolated quickly, but there was a concern about the extent of the data at risk. The company had backups in place but was unsure of how much information was compromised. The situation required immediate action to prevent further damage and restore the affected data.
Case Study
Zapier Aggregates Multiple Analytics in a Single Dashboard with the New Relic Platform
Zapier, a company that enables non-technical users to push data between hundreds of web applications, was facing a challenge in automating and provisioning servers for optimal performance. The company's environment consisted of 50 Linux servers on the Amazon Elastic Compute Cloud (EC2), a Django application split across several servers, and a backend consisting of a dynamic number of celery task workers fed by messages published to a RabbitMQ cluster. They also maintained a number of internal web services on nginx in front of Gunicorn and Node.js processes. Redis handled simple key and value stores, with logging handled by Graylog2 and ElasticSearch. However, they realized that no level of automation would be sufficient without an effective monitoring solution in place. They needed a tool that could provide immediate alerts when something was breaking and could be easily implemented into their environment.
Case Study
Pipeline Insight Case Study: YARCDATA
YarcData faced challenges in determining the conversion rates of prospects into customers through various marketing efforts and identifying the source of its leads. They wanted to know the percentage of opportunities in the sales pipeline that came from different marketing events, web downloads, or self-sourced sales opportunities. Additionally, they needed the ability to drill down into the data to guide where to allocate more marketing dollars based on the success of previous efforts. Previously, YarcData relied heavily on spreadsheets and Salesforce.com reports, which made it difficult to extract the exact information they needed. This reliance on spreadsheets represented about 70% of their data presentation.
