Deutsche Bank London developed a tool that runs within JVM and efficiently secures legacy Java applications. The tool can detect and prevent attacks and apply virtual patches. The bank worked with security vendor Waratek to create the tool. It uses what Gartner analyst Joseph Feiman calls a “self-protecting” application approach. RASP works like a firewall and blocks attacks, and it operates in the application’s runtime environment. It’s not so much about Java’s security problems as it is about looking at a way to apply security to multiple different applications.”]
Source: https://www.darkreading.com/application-security/how-a-major-bank-hacked-its-java-security