Cequence Security Expands Its Security Platform with CQ appFirewall -- Security Today

Cequence Security Expands Its Security Platform with CQ appFirewall

New security module leverages the platform’s CQAI analytics engine to bring much-needed innovation unavailable in legacy web application firewalls

Jun 05, 2019

Cequence Security, a provider of innovative application security solutions for today’s hyper-connected enterprises, today announced it has expanded the capabilities of its Application Security Platform with a new security module - CQ appFirewall. This new module will leverage the intelligence of CQAI, the patented analytics engine within the platform, to automatically detect and defend against attacks that exploit known and unknown application vulnerabilities – and even eliminate the need for WAF signatures.

The Cequence Application Security Platform, originally launched in November 2018 with CQ botDefense, leverages the application intelligence generated by CQAI to detect and defend against automated attacks that appear to be legitimate as they target the application business logic itself. CQ appFirewall takes full advantage of the same application intelligence to provide non-stop security, even with continuous application updates and modifications by DevOps teams. CQ appFirewall will complement CQ botDefense to deliver comprehensive application security that is effectively “baked in” to the web, mobile, and API-based application tier.

“We actually solved the hardest security problem first, stopping malicious bot attacks with our initial module, CQ botDefense,” said Ameya Talwalkar, Chief Product Officer and co-founder of Cequence Security. “With CQ appFirewall, we have significantly extended the platform’s value with innovations that overcome the inherent security limitations of traditional WAFs. When customers deploy both security modules, the platform will not only prevent attacks targeting their web, mobile, and API-based applications, it will also help eliminate unwanted application traffic on their network.”

CQ appFirewall includes support for OWASP Top 10 and PCI DSS Section 6.6, which address basic vulnerability protection and compliance requirements that customers expect from their WAF. But the new Cequence Security module goes well beyond that with several important innovations:

Discover - Automatic discovery of all web, mobile, and API-based applications that could be targeted with targeted attacks that exploit application vulnerabilities. This eliminates the need to continually monitor and update traditional application and threat signatures. In addition, it provides discovery and lockdown of misconfigured applications that should not be exposed to the Internet.
Detect – Leverages the multi-dimensional analysis of CQAI to fully understand normal application transaction, also known as syntactic behavior, and creates a unique profile between external clients and the customer’s web, mobile, and API-based applications. Any abnormal transactions – including those targeting zero-day vulnerabilities – are automatically detected and blocked, without the need to create a new WAF signature.
Defend – In addition to block and alert as response options, CQ appFirewall allows customers to defend against attacks using rate-limiting, geo-fencing, and deception techniques that convinces the bad actor the attack was successful, when in fact it wasn’t.

The need for these advanced features was recently validated in a report Cequence Security published with Ponemon Institue and based on data collected from WAF users in nearly 600 US organizations. “The research clearly reveals WAF dissatisfaction in three areas,” said Dr. Larry Ponemon, chairman and founder of Ponemon Institute. “First, organizations are frustrated that so many attacks are bypassing their WAFs and compromising business-critical applications. In addition, they’re experiencing the pain of continuous, time-consuming WAF configuration and administration tasks. Lastly, they’re dealing with significant annual costs associated with WAF ownership and staffing.”

“We’ve definitely addressed the security concerns raised in that report,” said Shreyans Mehta, CTO and co-founder of Cequence Security. “In addition, by combining AI-driven bot defense and application firewall capabilities within the same platform and a single pane of glass for management, we’re enabling our customers to reduce architectural complexity and improve staff productivity. And the open architecture of the platform makes it easy to share relevant data with other security tools, such as SIEMs or anti-fraud systems.”

A recent report from Gartner states: “Considering the range of exploits and abuse that can occur with web and mobile applications and web APIs, technical professionals must leverage a mix of externalized security controls to deliver appropriate protection and alleviate burdens to development staff.” (Report available to Gartner subscribers: Protecting Web Applications and APIs From Exploits and Abuse, Frank Catucci, Michael Isbitski and Ramon Krikken, April 24, 2019)

Pricing and Availability

The CQ appFirewall solution includes the underlying platform, CQAI analytics engine, CQ Insight management application, and CQ Connect for sharing information. The annual subscription price is based on the number of transactions processed by the solution, which can vary significantly by customer. Controlled release and beta testing begin next month, with general availability in Q4 2019. Please contact Cequence Security for more details.

i-PRO Certified as a 2025 Great Place to Work Around the World
11/20/2025
Allied Universal Named to Forbes List of America’s Best Companies
11/19/2025
Motorola Solutions Acquires Blue Eye
11/19/2025
SIA Names Jonathan Aguila as 2025 Insightful Practitioner Award Honoree
11/13/2025
Allied Universal Receives Top 50 Learning and Development Team Award
11/13/2025
PSA Network Joins the Foundation for Advancing Security Talent (FAST) as an Exclusive Member
11/12/2025
IPTECHVIEW Launches AI Orchestrator Cloud Video Management Platform
11/12/2025
barox Appoints Industry Veteran Reinhard Florin as Vice President of North America Sales
11/06/2025

Featured

The Evolution of IP Camera Intelligence

As the 30th anniversary of the IP camera approaches in 2026, it is worth reflecting on how far we have come. The first network camera, launched in 1996, delivered one frame every 17 seconds—not impressive by today’s standards, but groundbreaking at the time. It did something that no analog system could: transmit video over a standard IP network. Read Now
- IP Video
From Surveillance to Intelligence

Years ago, it would have been significantly more expensive to run an analytic like that — requiring a custom-built solution with burdensome infrastructure demands — but modern edge devices have made it accessible to everyone. It also saves time, which is a critical factor if a missing child is involved. Video compression technology has played a critical role as well. Over the years, significant advancements have been made in video coding standards — including H.263, MPEG formats, and H.264—alongside compression optimization technologies developed by IP video manufacturers to improve efficiency without sacrificing quality. The open-source AV1 codec developed by the Alliance for Open Media—a consortium including Google, Netflix, Microsoft, Amazon and others — is already the preferred decoder for cloud-based applications, and is quickly becoming the standard for video compression of all types. Read Now
Cost: Reactive vs. Proactive Security

Security breaches often happen despite the availability of tools to prevent them. To combat this problem, the industry is shifting from reactive correction to proactive protection. This article will examine why so many security leaders have realized they must “lead before the breach” – not after. Read Now
- Facility Security
Achieving Clear Audio

In today’s ever-changing world of security and risk management, effective communication via an intercom and door entry communication system is a critical communication tool to keep a facility’s staff, visitors and vendors safe. Read Now
- Facility Security
Beyond Apps: Access Control for Today’s Residents

The modern resident lives in an app-saturated world. From banking to grocery delivery, fitness tracking to ridesharing, nearly every service demands another download. But when it comes to accessing the place you live, most people do not want to clutter their phone with yet another app, especially if its only purpose is to open a door. Read Now
- Access Control

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

HD2055 Modular Barricade

Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.
Unified VMS

AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities
EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.