Imperva
> What
A WAF is a purpose-built platform which shares
some similar functionality with network-based firewalls.
> more
> Who
Organisations, which leverage the web as a
medium for transacting with their customers.
> more
> Why
WAF's protect the business critical applications
and servers from both known and unknown attacks.
> more
Document Downloads
SecureSphere - Database Security Gateway
SecureSphere - Web Application Firewall
Case Studies
Israel Government
BlueCross Blueshield
Datasheet
Imperva Solutions for PCI
White Peper
PCI Requirements: Application FW vs Code
Review
"Sapphire's
input provides me with an additional source of impartial, practical, advice
and guidance..."
Steve Marshall,
Head of Security Architecture, Barclaycard
> more
A WAF is a purpose-built platform which shares some similar functionality with network-based firewalls.
Working from predefined criteria an application firewall sits on the network and dynamically profiles the URL structures and parameters of the web applications that it is monitoring. Once the web application is learned, an acceptable usage policy is created and enforced in real-time. The policy defines all allowed/known behaviours and immediately tracks and/or blocks all suspicious/undefined behaviours that do not conform to the usage policy.
While all WAF's are specifically designed to protect web applications, some can offer some of the same functionality as perimeter firewalls, IDS/IPS and database assessment and auditing tools.