Detect, Filter, Monitor and Alert for Website Trojan Infection
Infecting webpages with Trojan is a relatively hidden means of tampering pages. The tampered pages are visually inapparent, while the real integrity has been destroyed. This attack directly targets the unwitting endusers who visit the pages, and infect their computers with Trojan, in order to gain access to confidential user information or even develop the machines into botnet members. The infected websites, in return, serve as a tool for the Trojan distribution, during the course their reputation been considerably affected. Anchiva WAF is able to detect and filter the user inputs or uploaded content, and effectively block any attempt of Trojan infection.

In many cases, webpages that user visits have already been infected with Trojan before a web application firewall being deployed. Under these circumstances, Anchiva WAF not only conducts behavioural analysis on web application's interactive activities, but also inspects and filters content embedded in the webpage. Upon a Trojan infection being detected, the administrator will be notified in real-time and is able to use the customizable replacement page untill the real page recovers.

Unique Malicious File Upload Filtering
Anchiva WAF provides virus scanning and filtering to file upload during HTTP/HTTPS application interaction. The built-in powerful virus signature library helps prevent infected files being uploaded to the web server which may bring wider circulation of the Trojan and results in server crashes, and even network disconnection. The more important thing is that, Anchiva WAF is capable of stopping backdoor virus from uoploaded to the server, which attempts to gain control of the server and attack the web application system.

Web Application Acceleration
Be able to accelerate user application experience by the means of high-speed caching a range of data and modules based on object dependencies.

Bi-directional, Multi-layered Deep Code and Content Inspection and Filtering
As the intermediary between web client request and server side response, Anchiva Web Application Firewall prevents web servers from direct exposure on the internet. Detects and filters interactive data in the bi-directional HTTP / HTTPS traffic for malicious content. By in-depth analysis on HTTP / HTTPS protocol to accurately identifies the various elements of the protocol, such as cookie, Get parameter, Post form, decodes them and reverts to the original information where attacks can be identified and located.

Effective Defense Against Zero-day Unkonwn Attack
Provides real-time inspection on HTTP/HTTPS requests for potentially abnormal HTTP request, inappropriate content, prohibited characters, unknown requests as well as abnormal structure, and stop them being used to launch attacks or cause damages, even unknown zero-day attacks.

Auto-generate Dynamic Attack Blacklist
Auto-lists the IPs that have been identified as the attack source into the blacklist without any manual intervention; provides time setting to re-activate banned IPs, bringing great ease to the administrator in maintenance and management.

Easy Deployment and Management
Interoperable with the existing firewalls, routers, and switches in the Plug-and-Play, layer 2 transparent mode dployment, without the need to change the network and web server topology. Upgrade automatically.

Multi-layered Flexible Defenses
Various defense policies are available based on web domain, web server address, web directory, and URL. Basic policy plus advance policy options to inspect and provide compliance and security filtering on web application's interactive content.

High Performance Platform
Patented technology and optimized TCP protocol stack supporting latest multi-kernel hardware platform provide powerful technical support to AnchivaOS, providing customers with a very high performance platform that can grow in linear fashion with the hardware upgrade in the future.

High Return on Investment
  - Single device protects multiple servers.
  - Locate attacks based on web interactive content, unrelated to web servers.

       Free to add defense servers.
  - Deploy in front of the web servers in IDC; protect multiple web servers with

       general and/or server specific policies.