Home

SecureSphere SE Web Application Firewall

The Industry’s Only Automated Web Application Firewall

Market Leading Web Application Security

Based on Imperva's enterprise-class SecureSphere Web Application Firewall, the Standard Edition (SE) Web Application Firewall is designed for medium enterprises, providing the industry's best and only automated protection for critical applications. It combines superior application data security with proven performance, ease-of-use, and automatic security updates demanded by medium enterprise with limited IT resources. The Imperva SecureSphere SE Web Application Firewall delivers enterprise-class security at an affordable cost for medium enterprises.

  • Enterprise-class Web Application Firewall for Medium enterprise
  • Protects Confidential Data from Breaches and Leakages
  • Provides Easy Deployment with Minimal Configuration
  • Delivers Dynamic Up-to-Date Security Protections
  • Helps Meet Critical PCI Compliance Mandates
SecureSphere SE - Network ArchitectureClick to enlarge

Upgradeable to Enterprise Edition

SecureSphere SE has everything you need to protect your online-applications, packaged in a solution for small IT staff. To provide maximum flexibility, SecureSphere SE deployments are upgradeable to the Enterprise Editions as organizations grow their needs.

Protects Confidential Data from Breaches and Leakages

The SecureSphere SE Web Application Firewall leverages multiple inspection layers and security defenses to secure Web applications from sophisticated attacks and malicious hackers.

Accurate Application Protection
Imperva's unique Correlated Attack Validation technology correlates violations across security layers and over time to accurately identify the most complex attacks. Individual violations may not definitively indicate attack, but by correlating unique combinations of violations, attacks are validated beyond a doubt. No other solution can match the accuracy achieved through Correlated Attack Validation.

Reliable Data Leakage Prevention
SecureSphere inspects outbound traffic to identify potential leakage of sensitive data such as cardholder data and social security numbers. In addition to reporting on where sensitive data is used in the application, SecureSphere can optionally prevent this information from leaving the organization.

PCI Compliance

SecureSphere addresses 8 out of 12 sections of PCI DSS. This includes the critical 6.6 requirement for an application firewall. SecureSphere provides unparalleled accuracy, ease of deployment and ease of use, making it the most useful and cost-effective solution for PCI compliance.

Provides Easy Deployment with Minimal Configuration

The SecureSphere SE Web Application Firewall provides the most flexible deployment options available. In addition, Imperva’s Dynamic Profiling delivers superior security with minimal configuration or policy definition required by the SecureSphere administrator.

Flexible Deployment
Based on Imperva's kernel-based Transparent Inspection technology, SecureSphere enables high-performance, high-availability deployment into finely-tuned data centers without any impact on existing databases, applications, or network infrastructure.

  • Transparent Layer 2 Bridge - for drop-in deployment and industry-best performance
  • Reverse Proxy – for content modification, such as cookie signing and URL rewriting
  • Transparent Proxy – for fast deployment of content modification without network changes
  • Non-inline Monitor – for zero-risk monitoring and forensics

Automated Application Learning
SecureSphere's unique Dynamic Profiling technology automatically learns the structure, elements, and expected usage patterns of protected Web applications. By comparing Web requests to the profile, SecureSphere can detect unacceptable behavior and prevent malicious activity with pinpoint precision.

Delivers Dynamic Up-to-Date Security Protections

SecureSphere provides real-time security updates to protect against the latest threats based on feeds from the Imperva Application Defense Center (ADC). The ADC analyzes exploit traffic from a diversity of real Web sites, and conducts primary vulnerability research to identify the latest threats. The results of this research are updated defenses at various layers within SecureSphere, including signature updates, protocol validation policies, and correlation rules.

Ease of Monitoring and Alerting
A real-time dashboard provides a high level view of system status and security events. Alerts are easily searched, sorted, and directly linked to corresponding security rules.

Dashboard

Business Relevant Reporting
SecureSphere includes reporting for specific business applications and regulatory mandates, and provides a number of pre-defined and customizable Web based reports.

Scalable Management
SecureSphere can be deployed as a standalone appliance and can also scale to protect a cluster of Web servers. The SecureSphere SE Management Server offers a centralized configuration, monitoring, and reporting infrastructure to manage multiple SecureSphere WAF appliances and applications from a single console.

Related Links

Automated and Accurate Protection Against:
  • Web, HTTPS (SSL) and XML Vulnerabilities
  • SQL Injection
  • Session Hijacking
  • Cross Site Scripting (XSS)
  • Form Field Tampering
  • Known Worms
  • Zero Day Web Worms
  • Buffer Overflow
  • Cookie Poisoning
  • Denial of Service
  • Malicious Robots
  • Parameter Tampering
  • Brute Force Login
  • Malicious Encoding
  • Directory Traversal
  • Web Server and Operating System Attacks
  • Site Recon
  • OS Command Injection
  • Cross-Site Request Forgery (CSRF)
  • Google Hacking
  • Remote File Inclusion Attacks
  • Illegal Encoding
  • Credit Card Exposure
  • Patient Data Disclosure
  • Corporate Espionage
  • Phishing
  • Data Destruction
  • US SSN Leakage
  • Anonymous Proxy Vulnerabilities