SOLUTIONS - Web Application Firewall

HOME > SOLUTIONS > Web Application Firewall

Web Application Firewall

Web Application Defenses State
With more advancement in internet applications and techonology, websites have witnessed an increasing trend in the diversity of business they carry as well as the attacks that target them, such as SQL injection attacks, XSS attacks, Trojan infection.However, the traditional security solutions, such as firewall and IPS, have failed to provide effective and comprehensive protection to those web-based business.
Vulnerable Web applications are the No. 1 attack vector today.--- Forrester
2010.2 "82 percent of websites have had at least one security issue of high, critical
or urgent severity." --WhiteHat Security
"64% of the 10 million security incidents tracked targeted port 80." ---
Information Week
This daunting circumstance generates the need for a special web application security solution that is able to protect web application traffic and all application resources from attacks, which take advantage of web protocols or exploit application-associated vulnerabilities. And the voice calling for web application firewalls is becoming increasingly prominent.
" WAF is a very different technology, and it protects against vulnerabilities
you inadvertently create yourself." -- Gartner analyzer Greg Young
Anchiva Web Application Firewall Solutions
Essentially, Web application security is closely related with how well the application is coded. Web applications, however, different from other softwares such as word and image processin softwares, carry in them unique business of one organization and require frequent changes to meet certain business needs. Nonetheless, most of people take it for granted that the web development is so simple that developers lack of experience can also do the job. In many cases, software developers develop applications without any security principals in mind. They simply copy similar codes and fail to well understand the processes of web-based business, not to mention the complex interoperations between client and server, and backend database. This results in a lack of generic patch available for those customized web applications, and to modify the code is usually costly and time-consuming and therefore become difficult to implement.
In response to this web application state, a professional security product capable of both inspecting and securing web applications' interactive data becomes a reasonable and necessary choice. Anchiva Web Application Firewall emerges to meet this demand. Anchiva Web Application Firewall provides bi-directional scanning and analysis on HTTP/HTTPS traffic, identify and detect various types of web coding and interactive technology, URL parameters and form inputs, in order to offer in-time and preactive protection to web applications.
Anchiva Web Application Firewall provides real-time analysis, inspection and filtering on http/https protocol traffic that go through the web servers to accurately locate, identify and block a variety of web application-based intrusions from accessing web servers and executing unauthorized actions. The firewall is designed purposedly to meet the challenges of Web 2.0, providing proactive protections rather than passive recovery after attack happens. It gives consolidated and multi-layered protection to web servers against malicious code, unauthorized tampering and application-based attacks to maximize web application security. It can prevent webpage tampering, website database leakage, password breaking, and system administrator privilege leak. It prevents infection of Trojan, virus, malicious code, and spyware. It guards user input data against user account theft and stops SQL injection and XSS attack.
The following diagram depicts the Anchiva Web Application Firewall's detection flow.