Operant AI, the world’s only Runtime Application Defense Platform, has officially announced the launch of its brand-new 3D Runtime Defense Suite, which packs together powerful Discovery and Detection with Defense capabilities, all while providing the result in real-time.
According to certain reports, the stated suite arrives on the scene bearing an ability to protect every single layer of live cloud applications, including AI models and APIs in their native environments.
Before we dig any further into the given technology, though, we must take into account how the traditional static code scanning and other security methods have long been confirmed as incapable of detecting the most common and dangerous attacks. In response, more and more companies are now working with an active runtime detection and defense to address unknown threats like prompt injection and zero-day vulnerabilities. Having said so, a bigger chunk of the existing runtime approaches have shown to focus on just alerting rather than taking action. Such a limitation, like you can guess, leaves enormous data for human teams to analyze, thus making it difficult to understand the attack surface and also failing to block actual attacks.
Enter Operant’s new 3D Runtime Defense Suite, it is markedly designed to enhance its existing runtime security platform, which already blocks over >80% of OWASP Top Ten threats across APIs, Kubernetes, and LLMs.
“Much of today’s AI is deployed on Kubernetes, and our industry keeps learning secure-by-design applications are more able to protect data from the outset and prevent future heartache,” said Sarah Novotny, an advisor to Operant and an AI industry leader on the board of Coalition for Secure AI (CoSAI). “Operant’s in-line auto-redaction enables teams to develop AI enhanced products faster delivering Kubernetes-native privacy controls that span all the way from infra to AI APIs, so that security, platform, and developers have what they need to build today’s leading AI tech.”
Talk about the given suite on a slightly deeper level, we begin from its promise of enhanced discovery, a promise where users can come expecting instant live blueprints of AI workloads, models and AI APIs. Next up, they can expect to facilitate continuous identification of ghost APIs and shadow AI data flows. Another detail worth a mention here is rooted in how the new suite’s threat discovery capabilities also make it possible for users to conduct what would be a comprehensive brand of tracking for data-in-use patterns from third-party APIs to data stores.
Beyond that, they can enjoy complete transparency of AI supply chains, including all prominent AI platforms like OpenAI, Gemini, Cohere, Anthropic, etc.
Moving on to new suite’s runtime threat detection facility, it includes runtime detection of OWASP top ten LLM threats, including prompt injection, sensitive data exfiltration, model theft, and data poisoning. It also covers effective runtime detection of sensitive data leakage across ingress and egress for PII, secrets, API keys, and more.
Apart from that, Operant AI’s latest brainchild further brings to your disposal the means for a more active approach towards defense. This approach packs together automated in-line blocking and redaction of sensitive data flows. It also guides you when the agenda is to intelligently quarantine suspicious third-party containers and AI models. To go along with this, the new suite enforces advance rate limiting and token usage for sensitive APIs, including AI endpoints.
“We’re particularly proud of our new defensive capabilities around auto-redacting sensitive data,” said Vrajesh Bhavsar, CEO and co-founder of Operant AI. “We not only detect private and sensitive data, like SSNs and API keys, in-line as they move from models to AI APIs, we enable teams to auto-redact that private data before it leaves their environment, keeping data privacy under control while enabling the models and applications to keep working in a secure-by-default mode.”
