NSFOCUS Launches Comprehensive Web Application Security Solution

NSFOCUS Launches Comprehensive Web Application Security Solution
25.01.2017 08:00 am

NSFOCUS Launches Comprehensive Web Application Security Solution

Security

NSFOCUS Web Application Firewall and Web Vulnerability Scanning System identifies vulnerabilities and enables smart patching to ensure uninterrupted business operations & availability

Complex attacks on web-based applications are on the rise, accounting for approximately 40 percent of all data breaches in 2016. To combat this growing threat, NSFOCUS, an intelligent hybrid security solutions provider, today introduced its Web Application Security solution – to ensure enterprises are equipped with the most comprehensive application-layer protection against web attacks that can result in data breaches.

The NSFOCUS Web Application Security solution combines industry-leading Web Application Firewall (WAF) technology to prevent attacks and protect web applications, with proactive vulnerability assessment via its Web Vulnerability Scanning System (WVSS) and real-time global threat intelligence. The WAF and WVSS products are available separately and offered as an integrated system, working together to continuously identify application vulnerabilities, and implement protections in real-time. Each product can be deployed either on-premises or in the cloud. 

“As organisations rely more heavily on critical web-based applications and continue to migrate valuable and sensitive data to the cloud, the number of security risks they face continues to grow exponentially; and as we saw in 2016, a frightening number of these attacks are aimed at the application layer,” said Allan Thompson, COO of NSFOCUS. “Web application attacks are relentless, and unfortunately, hackers understand many companies are woefully unprepared to address this risk; which is why it has quickly become the number one attack vector. This is where NSFOCUS can help - our fully integrated Web Application Security solution proactively identifies vulnerabilities and automatically mitigates by way of WAF smart patching.”

NSFOCUS WVSS protects websites by identifying vulnerabilities in web applications that can be exploited by hackers. Following identification, it provides the WAF with actionable analysis and reporting, including a remediation plan to improve the overall security of the website.

Through seamless integration with the WVSS, the WAF automatically generates and applies smart patches according to the data it receives from the scanning reports. These protections are often deployed even before vendor-supplied patching is complete. It is through this approach that NSFOCUS can provide full protection for critical web servers and applications against the top 10 threats identified by the Open Web Application Security Project (OWASP) and Web Application Security Consortium (WASC).

NSFOCUS WVSS key features and benefits:


  • Efficient and Stable Scanning: Easily scans over 100,000 pages per day by leveraging next-gen technology such as intelligent page crawling, proxy caching, URL-level load balancing and more.

  • Closed-Loop Management: The findings of WVSS can be fed into the WAF to generate a “smart patch” to provide closed–loop detection and defense for websites. This closed-loop system ensures the best and most timely protection possible; further reducing operational expenses.

  • Virtualised Deployment: Offers flexible implementations and can be installed on-premises as a network appliance or delivered as a cloud service to support a wide range of compliance and security requirements.


  •  

NSFOCUS WAF key features and benefits:


  • Prevents Theft of Critical Data: Offers a complete set of signatures for web vulnerabilities and the ability to detect unauthorised file uploads. WAF enforces access control policies from layer 4 though 7 to prevent non-authorised access. During an attack, the WAF also provides outbound data leakage detection.

  • Ensures Website Availability: Provides a built-in anti-DDoS module to protect against TCP flood attacks, HTTP/S GET/POST flood attacks and slow rate attacks up to 1 Gbps. Coupled with the NSFOCUS ADS anti-DDoS product line, higher rates of DDoS attacks can be thwarted.

  • Meets Compliance with PCI DSS: Compiles reports for PCI audits as well as suggestions for policy tuning and configuration to help ensure compliance with PCI-DSS 3.2 and beyond.

Related News

IDnow Accelerates Innovation in Identity Verification in UK as Brits Lose £6m to Coronavirus-related Scams

IDnow (www.idnow.io), a fast growing European identity verification provider, has... Read more »

Britons Embrace Biometrics But Over Half Will Abandon Applications If Not Fully Digital

Since the start of the COVID-19 outbreak, much focus and value has been put on contactless and online interactions – particularly in the financial sector. New research... Read more »

IDEX Biometrics set to drive down cost of biometric smartcards with new TrustedBio™ family of products and solutions

IDEX Biometrics ASA, a leading provider of advanced fingerprint identification and authentication solutions, today announced the launch of TrustedBio™ — a new... Read more »

Global Enterprises and Merchants Unprepared as Fraudsters Focus on Rewards Programs

 ... Read more »

Esma Proposes Development of Consolidated Tape for European Equities

Europe's top securities regulator has recommended the establishment of a real-time consolidated ticker tape to improve transparency for equities across the EU's fragmented... Read more »

F-Secure’s Cyber Threat Landscape for the Finance Sector highlights the broad range of threats facing the global finance industry

Thieves have been stealing money from banks since the 18th century. And while today’s thieves use cyber attacks to steal money from financial institutions, a new report from... Read more »

Magazine
ALL
Free Newsletter Sign-up
+44 (0) 208 819 32 53 +44 (0) 173 261 71 47
Download Our Mobile App
Financial It Youtube channel