Curtail Security officially launched today in conjunction with the RSA Conference 2017 that's taking place in San Francisco this week. The company says its software will detect and isolate attackers while avoiding any downtime for users.
Curtail says that many companies run multiple copies of their servers to combat hardware failure. If something breaks from a physical standpoint, they are able to move their data to a virtualized copy of a server.
Curtail's software provides users with a virtualized copy of their server. If the server is attacked, Curtail shuts down that server and moves the customer's traffic to the new server. The big differentiator is that Curtail is able to do this without causing the customer any downtime, says Frank Huerta, Curtail CEO.
In order to detect the attack, Curtail compares the clean server with the one that is hacked to pinpoint what the attacker is doing. “It is very easy to call in different servers when needed in order to identify these things in the cloud,” says Robert Ross, Curtail CTO. Specifically, it compares areas of the network being attacked, what services are being offered, location of IP addresses, patterns of IP addresses, and times of day these patterns are occurring.
The startup even takes it a step further by offering a third copy of the server to isolate the attacker and gather data on its methods. If the user is familiar with the attack or doesn’t care to know more about it, they have the option of dropping this third server completely and provisioning a new one.
Curtial’s products, UnCover and ReCover, both use this concept of security but mitigate different types of attacks. UnCover works in lower-level protocols to detect mismatches in network behavior, which is more apparent in persistent threats. ReCover looks deeper in the protocol stack, comparing applications, making it better at detecting zero-day threats, claims Ross.
Founded in 2015, Curtail is a self-funded company that is headquartered in Santa Barbara, California. It currently has paying enterprise customers but wouldn’t disclose any specifics.