SecureNative provides predefined Security Flows to help you get started fast. However you can also define custom security flows using built-in events that automatically tracked by SecureNative or by defining custom event.
Security Flow Structure
In general all security flows have the simillar structure:
Trigger --> Detection --> Condition --> Action --> Notification
Security Flow Trigger
Trigger is event that triggers security flow execution, you can use one of built-in events or define your own here.
The trigger also contains request context: (IP, User, Device)
Security Flow Detection
Detection is performed to detect malicious activity, you can use one ore more of detections services that available.
Security Flow Condition
Condition is rule that determin whether action should be performed
Security Flow Action
When SecureNative detect suspecious activity or Security Flow can trigger:
- Block an IP, user account or device temporarily or permanently
- Challenge user to prove that he is human via captcha
As the result user can have one of two pages:
You can always delete live security action from the Blocked Entries screen.
Blocked users that visiting your application will see the temprory block page:
Challenged users that needs to prove that they are human will receive challenge page:
Currently we do not support custom blocking pages, but it's definitely part of our product roudmap.
If you have specific neeed for custom blocking page, please let us know at firstname.lastname@example.org.
Security Flow Notification
If security flow contains notification step then it will be triggered automatically when flow executed:
Predefined Security Flows
To help you get started, we've already we have bunch of security flows created by our team that you can be enabled in one click of the button. Those flows covers common security scenarios.
Predefined security flows can be divided in two types:
- Events that are automatically tracked by SecureNative micro-agent
- Custom events that you can track by SecureNative SDK, which are specific to your business logic
Security Flows execution
Security Flows executed automatically in real-time when events are tracked by the agent/sdk, please refer to tracking events Tracking Events Guide to learn more.
Tracking custom events
You can use one of available SDK's to track custom events: