Securing Application Deployments
According to Trustwave’s State of Security report, 96 percent of web applications scanned by Trustwave in 2013 harbored one or more serious vulnerabilities. Often, compromised organizations don’t detect the breach themselves and time to containment averages 14 days. Modern day attacks are increasingly complex, frequently change targeted vulnerabilities and are harder to detect and block on traditional firewalls. While traditional firewalls play a critical role in an application infrastructure, they are normally limited to operation at Layer 4 or below and have limited inspection capabilities.
Image may be NSFW.
Clik here to view.
KEMP’s newly introduced Application Firewall Pack (AFP) integrates L7 WAF functionality with existing applicaiton delivery services to provide real-time coverage for all published application threats, including the OWASP Top Ten, as well as critical baseline protections.
KEMP’s LoadMaster supports traffic optimization and load balancing for enterprise applications. Additionally, security functionality such as intrusion prevention, application header inspection and support for multi-factor authentication help to secure these deployments. The inclusion of WAF services extends LoadMaster capabilities and helps customers to optimize their application infrastructure while mitigating the risk of web-facing access.
KEY Solution Benefits
- Stay protected from latest threats with automatic rules updates
- Provide holistic application delivery by coupling security services with high availability, traffic optimization and SSL termination
- Fill security vectors in infrastructure by addressing application exploits typically undetected by traditional firewalls
- Optimize application performance by mitigating impactful malicious attacks
- Optimize application performance by mitigating impactful malicious attacks
KEY Features
- Daily Rule Updates
- SQL injection protection
- Cross-site scripting mitigation
- CSRF prevention
- Cookie tampering prevention
- IP reputation checking
- Data leakage protection