Web Security for Travel, Ticketing, and Booking

Reblaze provides comprehensive protection for sites, applications, services, and APIs.

A Highly Competitive Industry

With over $500 billion in annual sales, online travel is one of the largest markets on the web. Competition is fierce, and many companies use unsavory tactics—including web attacks. Although hackers and cybercriminals are very active in this market, online travel is unusual in the high percentage of attacks that are waged by competitors of the victim.

Unethical travel companies use DDoS assaults to suppress competitors’ sites and steal their sales. Hackers wage DDoS attacks for extortion.
Competitors deploy “inventory hoarding bots” to abuse time-to-checkout policies, continuously looping and booking reservations without ever purchasing tickets. Hoarding can prevent legitimate customers from buying.
Application-specific abuse is also a growing problem, thanks to the increasing popularity and feature-richness of mobile/native travel applications.

Robust Protection for Travel, Ticketing, and Booking

Reblaze is a cloud-based platform that provides complete web security for the online travel industry.

Leverages cloud bandwidth and other resources to absorb and defeat even massive DDoS assaults.

Blocks malicious traffic and keeps it out of your sites, applications, services, and APIs.

Today’s threat actors use sophisticated hostile bots, many of which can evade detection by traditional web security solutions. Reblaze is a pioneer in advanced human/bot identification technologies, defeating even the latest generation of malicious bots which can mimic human behavior.

As you offer more capabilities to your customers, your platform’s attack surface expands. Many web security solutions cannot adapt and self-learn as the underlying platform evolves, so they require frequent manual re-configuration. This process is usually difficult, time-consuming, and error-prone.

Reblaze has a long record of success protecting travel platforms. Example: before switching to Reblaze, one of our airline clients was plagued with hoarding bots which other security solutions could not identify. Since switching to Reblaze, the hoarding bots are being identified and blocked, with no impact to sales. The airline is saving $600,000 annually in GDS fees.

Reblaze includes API schema ingestion, validation, enforcement, and reverse-engineering prevention. It also includes a full client-side SDK for mobile/native applications.

Many Additional Benefits

Reblaze provides a unique combination of features, including many benefits that other solutions do not offer.

Dedicated Virtual Private Clouds: Reblaze provides unique, dedicated VPCs for each account. (This eliminates the multi-tenancy vulnerabilities found in other security solutions.) Also, Reblaze’s VPCs are geolocated immediately in front of the protected networks, which reduces latency to negligible levels (typically three milliseconds or less).
Flexible architecture: Reblaze runs natively on all the top-tier cloud platforms, in your choice of configuration. (Most of our customers choose to run it within their own accounts). Reblaze can also be used in hybrid mode.
Next-generation threat detection. Reblaze includes dynamic rulesets, extensive rule customization features, and the most powerful ACL capabilities in the industry. The platform is self-learning and adaptive, using Machine Learning to recognize, and adapt to, changing Internet traffic conditions. Even as new web threats arise, your sites, applications, and endpoints remain secure.

Compliant and Certified Protection

Reblaze’s clouds are fully compliant with GDPR, SOC 1/SSAE 16/ISAE 3402, FISMA Moderate, PCI DSS, ISO 27001, FIPS 140-2, HIPAA, CSA (Cloud Security Alliance), and other standards and certifications.

Reblaze Technologies is ISO 27001 Certified, AICPA SOC 2 Certified, and is a PCI DSS Certified Level 1 and Level 2 Service Provider.