Imperva Blog|Login|中文Deutsch日本語

Podcasts

Launch iTunes & Subscribe  Imperva on iTunes Hide Descriptions
Selected Tag: Business Logic Attacks | Show All
Next Generation WAF (NG-WAF) -- An interview with Amichai Shulman

Next Generation WAF (NG-WAF) -- An interview with Amichai Shulman


On this episode of the Imperva Security Podcast Amichai Shulman -- CTO and Co-founder of Imperva talks about the next generation of WAFs.

Amichai discusses the Industrialization of Hacking and how that's creating a need for WAF solutions to evolve so they can address automated attacks, business logic attacks, and the existing and growing list of technical attacks such as SQL Injection, XSS, etc. He also discusses mechanism for combating automated attacks and business logic attacks, deployments within MSSP and Cloud-based environments, and other components of Imperva's NG-WAF vision.

Amichai Shulman is Co-Founder and CTO of Imperva, where he heads the Application Defense Center (ADC), Imperva's internationally recognized research organization focused on security and compliance. Shulman regularly lectures at trade conferences and delivers monthly eSeminars. The press draws on Shulman's expertise to comment on breaking news, including security breaches, mitigation techniques, and related technologies. Under his direction, the ADC has been credited with the discovery of serious vulnerabilities in commercial Web application and database products, including Oracle, IBM, and Microsoft. Prior to Imperva, Shulman was founder and CTO of Edvice Security Services Ltd., a consulting group that provided application and database security services to major financial institutions, including Web and database penetration testing and security strategy, design and implementation. Shulman served in the Israel Defense Forces, where he led a team that identified new computer attack and defense techniques. He has B.Sc and Masters Degrees in Computer Science from the Technion, Israel Institute of Technology.

Tags: Amichai Shulman, ADC, WAF, NG-WAF, Industrialized Hacking, Automated Attacks, Business Logic Attacks, Hacking

Play Podcast Podcast Transcript (PDF)
Protecting Web Portals and Bringing Together Security Operations and Development with the Imperva SecureSphere WAF at Telefonica O2 Germany -- an Interview with Daniel Stricharz

Protecting Web Portals and Bringing Together Security Operations and Development with the Imperva SecureSphere WAF at Telefonica O2 Germany -- an Interview with Daniel Stricharz


On this episode of the Imperva Security Podcast Daniel Stricharz is interviewed. He shares his experiences around choosing, implementing and operating the Imperva SecureSphere Web Application Firewall (WAF). He shares a number of examples where WAF helped Telefonica discover and address application vulnerabilities. He also discusses:
  • Drivers to implement WAF in large, complex, telco
  • Bringing together security operations and developers with WAF
  • Business logic attacks and application profiling
  • What to look for in a WAF
Daniel Stricharz is a senior security and infrastructure specialist at Telefonica O2 Germany responsible for the customer portals and their value-added services. Stricharz has studied law and computer science. Before he joined the telecommunications area in 2000 he worked as a consultant both in the IT and legal area for international businesses. His knowledge of emerging German legislation, cyber-crime, and cyber-law has helped to reconcile both specific legal and complex technical requirements. He initially specialized in data protection law and its technical implementation until he moved on to cover the full range of security aspects from product development to the operations of on-line services.

Telefonica O2 Germany GmbH & Co. OHG belongs to Telefonica Europe and is part of the Spanish telecommunication group Telefonica S.A. The Company offers its German private and business customers postpaid and prepaid mobile telecom products as well as innovative mobile data services based on the GPRS and UMTS technologies. In addition, the integrated communications provider also offers DSL fixed network telephony and high-speed internet. Telefonica Europe has nearly 47 million mobile and fixed network customers in Great Britain, Ireland, the Czech Republic, Slovakia and Germany.

In Germany, where the company is known simply as O2 with its head quarter located in Munich, Germany, has a customer base of more than 14.5 Million. Besides its more than 750 shops O2 operates a massive online portal, offering services ranging from an on-line shop over a complex web-based email solution, to a range of self-service opportunities for the customers and a huge number of other mobile services that help enrich the customers' mobile experience.

Tags: Daniel Stricharz, Customer, Telefonica O2 Germany, WAF, Business Logic Attacks, Application Profiling, Web Portal Security

Play Podcast Podcast Transcript (PDF)
Selected Tag: Business Logic Attacks | Show All
Launch iTunes & Subscribe Request More Information