Armorize SmartWaf
Why do we need Web Application Firewalls
Network and system level security controls do not equate to Web application security. Traditional perimeter security technologies focus on network and transport layer attacks . However, Web application exploits such as Cross Site Scripting (XSS) and SQL Injection are higher in the protocol stack and are processed by these devices as legitimate traffic bound for the Web server.
This can have a devastating effect on businesses, often resulting in operational failure, client or corporate financial loss, legal liability for breach of customer confidentiality, compliance failure, untold reputation damage, and ultimately in loss of business.
As a state-of-art Web Application Firewall, SmartWAF focuses on the vulnerabilities that traditional perimeter security controls miss. By identifying, classifying and blocking malicious exploits embedded in the Web application traffic
stream, it does not replace existing network perimeter security controls such as stateful/proxy firewalls, antivirus gateways, IDS or reverse proxies but complements them in an efficient and cost-effective marmer.
Integration with CodeSecure
SmartWAF integrates with CodeSecure by importing source code analysis findings and reconfiguring its rule set to explicitly block Web application exploits targeted at vulnerabilities identified by CodeSecure". This "hot-fix" mitigation provides an extralayer of immediate protection for those customers who do not have immediate resources to fix critical code-level vulnerabilities.
SmartWAF 'm Management
With its intuitive web-based user interface, SmartWAF provides easy-to-administer configuration and security functions. In Basic Mode, there are step-by-step guides and wizards while Expert Mode allows manual creation of rules to specifically address vulnerabilities in the Web application source code or configuration. This ensures that rules can be customized not only for each application within the infrastructure, but also for specific portions of each application.
