Market Leading Protection for Web Applications

The Imperva SecureSphere Web Application Firewall protects Web applications and sensitive data against sophisticated attacks such as SQL injection, Cross-Site Scripting (XSS) and brute force attacks, stops online identity theft, and prevents data leaks from applications. SecureSphere offers drop-in deployment, automated, adaptable security, and low operational overhead. Imperva’s Dynamic Profiling technology automatically builds a model of legitimate behavior and recognizes application changes over time, ensuring that SecureSphere’s security policies are up-to-date and accurate without manual tuning.

ThreatRadar, an industry-first reputation-based Web security service, is an optional add-on to SecureSphere WAF. ThreatRadar mitigates automated, large-scale attacks by integrating credible information on known attack sources into SecureSphere WAF defenses. ThreatRadar can quickly and accurately block traffic from malicious sources before an attack is attempted.

As the market leading Web application firewall, more organizations rely on Imperva to monitor and protect their critical Web applications than any other vendor. Imperva SecureSphere provides your business with a practical and highly secure solution to ensure that your Web applications and data are safe.

Benefits

• Accurately monitors and protects Web applications
• Automates operations through patent-pending Dynamic Profiling technology
• Supports ultra high performance and sub-millisecond latency
• Scales to support large, distributed deployments with centralized management
• Documents security status and compliance with best-in-class monitoring and reporting
• Centralized, global monitoring of credible attack source data providers

SecureSphere Web Application Firewall Features

• Accurate Protection Against Web Application Attacks – The SecureSphere Web Application Firewall combines a dynamic white list policy model with up-to-date application signatures, session tracking and correlation rules for precise attack detection.
• Reputation-based Security: ThreatRadar monitors global live feeds and dynamically updates SecureSphere WAF policies with the most recent list of malicious sources to ensure the most accurate and highest level of protection. ThreatRadar also alerts on phishing incidents and extends forensic information on geographic location of suspicious activity.
• Automated, Intuitive Management – Imperva’s unique Dynamic Profiling technology automatically learns the structure, elements, and expected usage of protected applications. An easy-to-use Web management interface makes configuration effortless.
• Transparent Deployment – Multiple configuration options, including layer 2 bridge, proxy and non-inline monitor, enable drop-in deployment with no changes to existing applications or network.
• Data Leak Prevention – SecureSphere inspects outbound traffic to identify potential leaks of sensitive data such as cardholder data and social security numbers.
• Ultra High Performance and Low Latency – Delivering multi-Gigabit performance and sub-millisecond latency, SecureSphere can easily scale to meet the most demanding data center requirements.
• Flexible High Availability Options – A broad array of high availability options, including fail-open interfaces and the proprietary IMPVHA failover protocol, enable zero-risk deployment into any environment.
• Enterprise-Grade Centralized Management – Scaling to protect large, distributed data centers, the MX Management Server centralizes the configuration, monitoring and reporting of multiple appliances. Hierarchical policies, granular administrative permissions, and a unique task-oriented workflow enable flexible management even in the most complex environments.

Click to enlarge

• Rich Graphical Reporting – SecureSphere includes a powerful reporting framework with both pre-defined and fully-customizable reports that provides instant visibility into security and compliance concerns.
• Application User Visibility – SecureSphere can automatically capture Web application user names and associate all session activity with the specific user. When SecureSphere is extended to database protection, then it can track SQL queries to Web application users.

Web Application Firewall Specifications