Web Application Firewall

Transparent Deployment

Imperva's unique Transparent Inspection technology enables SecureSphere's complete and accurate application security system to be deployed into any environment without forcing organizations to change existing applications, servers or networks, or to redesign their Web applications, change IP or DNS settings, or update authentication schemes.

Kernel-based Transparent Inspection separates security from deployment mode, enabling SecureSphere to support the following operation modes:

• Transparent Layer 2 Bridge for drop-in deployment and industry-best performance
• Layer 3 Router for network segmentation, routing and network address translation
• Reverse Proxy for content modification, such as cookie signing and URL rewriting
• Transparent Proxy for fast deployment of content modification without network changes
• Non-inline Monitor for zero-risk monitoring and forensics

Gigabit Performance for Unparalleled Data Security

SecureSphere delivers multi-gigabit throughput and tens of thousands of transactions per second while maintaining sub-millisecond latency. This is an order of magnitude better than competing approaches, and ensures completely transparent deployment. With SecureSphere, data security policies will never impact data center service level agreements or application performance.

High Availability Enables Deployment for Large Networks

SecureSphere's support for a wide variety of high availability options enables its deployment into some of the largest networks in the world. These availability options include:

• Imperva High Availability (IMPVHA) for sub-second failover
• Virtual Router Redundancy Protocol (VRRP) for router or proxy deployments
• Active-Active and Active-Passive Redundancy for external availability mechanisms
• Fail-open interfaces for single-gateway availability
• Non-inline deployment for zero risk monitoring and assessment

Click to enlarge