Because cyber-attacks have become increasingly sophisticated, blocking threats at the IP level alone is not enough to protect your web applications. Unfortunately, there are indications that most web applications are vulnerable to content attacks and have never been tested for vulnerabilities. Best practices dictate reviewing the source code of web applications from a security perspective in order to fix vulnerabilities. However, not all vulnerabilities can be detected with this method. If security is a major concern for your activities, web applications should be protected with a Web Application Firewall (WAF).
What is a Web Application Firewall
WAF stands for Web Application Firewall. This type of firewall allows you to inspect web requests and instantly block malicious requests, such as but not limited to XSS (Cross-Site Scripting), SQL injection, and virus injections. Compared to a traditional firewall that inspects network traffic at the IP level alone, a WAF goes further by inspecting the content of web traffic to block malicious requests and/or data theft.
CacheGuard protects your web application against known content attacks, such as but not limited to protocol violations, protocol anomalies, session fixation, SQL injection, XSS (Cross-Site Scripting), file injection, command access, command injection, and LDAP/SSI/PHP injection.
Customized Rules
CacheGuard allows you to design your own WAF rules based on regular expressions. This way, you can allow only requests that are considered regular and reject any other requests. By designing your own rules, you can avoid false positive matches produced by generic filters. A web request auditing module allows you to test your WAF rules before putting them into production.
IP Reputtion
CacheGuard uses RBLs (Real-Time Blacklists) of IPs with a bad reputation to protect your applications against abuse or attack attempts. You also have the option to block requests coming from specified countries.
Virus Filtering
CacheGuard protects your web application against malware injections. The WAF is combined with an antivirus that instantly blocks any attempt to upload malware files via your forms. The antivirus signature database is regularly updated to protect your applications against the latest malware.
SSL Offloding & PKI
To inspect web traffic, the WAF should be implemented as an SSL terminator to gain clear visibility into the traffic. By doing so, the WAF offloads your web servers from encryption/decryption tasks. Implementing the WAF as an SSL terminator means that your web application’s SSL certificate and its associated private key should be installed on the WAF. To facilitate operations on SSL certificates, CacheGuard includes a PKI (Public Key Infrastructure).
CacheGuard WAF is integrated into our core product, CacheGuard-OS. CacheGuard-OS is an appliance-oriented operating system that transforms a virtual or bare-metal machine into a network appliance.
We use technical cookies to ensure that we deliver the best experience on our site. If you continue to use the site, we'll assume that you're happy with it.
