Castleforce IT Security Team
Breach Security Web Application FIrewalls

Webdefend

The WebDefend web application firewall appliance goes beyond vulnerability scanning efforts, secure coding initiatives, and network security solutions by providing organisations with continuous, real-time web application-specific security.

Enquire about this product

4 Virus 5 Spyware 1 Spam 5 Web/IM 5 IPS/Patch Mgmt 5 Data/System Mgmt

Breach Webdefend Web Application Integrity

Key Features

  • Provides real-time, continuous web application security.
  • Delivers non-intrusive and effective security—WebDefend is the only sensor that deploys out-of-line and blocks 100% of detected attacks.
  • Automates web application compliance to regulations and industry standards, such as the PCI DSS.
  • Detects security defects that vulnerability scans miss, by passively monitoring web application traffic.
  • Bridges the gap between security and development teams with detailed reporting on sources of vulnerabilities for quick remediation.

Why Web Applications Are Vulnerable

Key Benefitts

Dynamic Application Profiling: The patent-pending Adaption profiling system automatically builds a customized, positive security model for each protected application to understand its acceptable behavior. The system maps all levels of application behavior, so there is no need for detailed knowledge or secure coding. As the application is updated, WebDefend automatically detects the changes, learns them, and adjusts the profile.

Inbound and Outbound Traffic Analysis: Only WebDefend offers inbound and outbound traffic analysis through the patent-pending, bi-directional ExitControl traffic analysis engine. ExitControl inspects both incoming and outgoing traffic to block hacker-informative error messages and prevent application defacement and data theft. Pre-defined and customizable BreachMarks within the ExitControl engine represent patterns that identify a specific type of information, such as credit card or Social Security numbers. Organisations can set BreachMark policies to alert on and prevent the loss of matching data.

Application Security Defect Detection: WebDefend uniquely identifies and reports on application security defects caused by insecure coding techniques. These defects, such as missing images or hyperlinks and improper request handling, negatively impact the user experience by preventing application access or disabling the web server. Each protected application is passively monitored for anomalies in its responses. If necessary, corresponding inbound requests are analyzed to determine underlying causes. By assessing an entire application in its actual environment, WebDefend pinpoints defects that would otherwise go undetected during a code review or vulnerability scan.

Out-of-the-Box PCI Compliance: WebDefend includes pre-packaged rule sets specifically designed for organisations working to comply with the Payment Card Industry Data Security Standard (PCI DSS). These rules ensure the proper configuration of security mechanisms for attack prevention as well as logging of all payment card usage for compliance. PCI-specific reports provide an immediate view of the system’s overall level of compliance as well as details of sensitive information use for audit purposes.

Full Monitoring and Blocking Capabilities: A full suite of monitoring and blocking capabilities allow organisations to customize WebDefend’s response to threats. A simulation mode facilitates deployment by indicating what WebDefend would prevent, without requiring full blocking functionality to be enabled. WebDefend’s blocking capabilities range from logging out malicious users, integrating with popular web servers for attack blocking and network firewalls for IP blocking, and TCP resets.

SSL Attack Detection: WebDefend replicates and decrypts SSL traffic streams without terminating the original encrypted session. Immediately after decryption, WebDefend inspects the traffic entering and leaving the web environment, providing full visibility and attack detection capability without compromising performance.

Intuitive Management Console: The easy-to-use WebDefend Management Console provides a single point of sensor configuration and management. Organisations can immediately use the console, without any initial training, to gain full visibility into their web applications’ architectures and security. The instructive console helps organisations understand the context in which events are generated and remediate problems quickly. For every event detected, a detailed description pinpoints the vulnerability, offers insight into its meaning, and assists with its resolution. The console offers multiple event views, allowing organisations to examine entire transactions and see the error messages presented to users. Events can also be filtered, so only exceptions are shown. Powerful reporting tools help to communicate web application security defects to development, meet compliance requirements, and track the effectiveness of WebDefend policies.


 

Breach Evaluation

Breach Webdefend datasheet Datasheet

Network Overview

Breach Webdefend Network Overview

Technology Overview

Breach Webdefend Technology Overview

If you are using active web content, such as online ordering applications, you cannot afford to be without this product.

SC Magazine

Webdefend SC Magazine Review Datasheet

Certified by ICSA Labs

ICSA Labs Certified Web Application Firewall

ICSA Importance of WAF Technology Datasheet

Trend Micro Websense the Internet content filtering software for helping business management and employee productivity Assuria is a UK based IT Security software developer, providing automated compliance and information assurance solutions Stonesoft produce high availability multi link ISP firewalls to help reduce single point of failure Breach Security Celestix produce high performance appliances coupled with hardened Microsoft security products Barracuda Logo Acronis Backup and Recovery Software Tricerion Identity Integrity Check Point firewalls and Pointsec Encryption software Mimecast Partner SkyRecon Intelligent Client Security Integrated Encryption and Device Control eSoft Network + Application layer firewalls with optional Web filtering, Spam Protection and IPS

© Copyright Castleforce 2007-2008. Web design by Theme Group