sPROXY

How to reduce the business risk in terms of your most critical business application nowadays

The SAP suite has been designed for heavy users around a proprietary communication protocol, so there was no software available to secure this type of environment. With the emergence of the web and its omnipresence, SAP adapted its software to the new environment with its NetWeaver version. This adaptation exposed SAP to all types of web-based attacks with the risk of compromising the entire company database.

SAP applications within an organization are being the most critical information: financial data, cardholder data, and other sensitive and private data are being transported and stored. Despite using standard security products like the SAP webdispatcher and procedures like penetrations tests, there is still an open Achilles heel: many unknown vulnerabilities and exploits are endangering the mission critical SAP applications. This is even more important by business perspective as they fall under national and international compliance guideline like Sarbanes- Oxley (SOX) and the Payment Card Industry Data Security Standard (PCI DSS) etc... DenyAll helps you to address this major business risk by minimizing the risk that your jewels of the company in form of important data within your SAP applications get stolen or manipulated. The Web Application Firewall of DenyAll helps you to cover these aspects by securing your SAP applications in the most effective and efficient way.

Business benefits of deploying DenyAll’s products to protect your SAP environment

• Closing security gap between network and SAP applications
• Protection of the critical data within the SAP applications
• Protection of applications dialoguing with SAP systems
• Guaranteed business continuity
• Maintaining national and international compliance rules
• Overview of activity
• Optimization of the existing infrastructure
• Reducing business risks by using basic & state of the art Security against nowadays applications attacks

DenyAll provides a complete solution for securing SAP environments. The DenyAll analysis module intercepts data before they enter the SAP environment for prior validation of the information content. The DenyAll SAP Security solution is the only system on the market that provides the option of validating not only the information sent via the NetWeaver portal, but also data exchanged through SAP GUI destined for the R/3 server. This global solution is certified as “powered by SAP NetWeaver”.

Depending on your business needs, there are a couple solutions by DenyAll :

1. Focus on basic SAP Security: sProxy
2. Focus on basic SAP Security incl. XML-traffic: rXML
3. Focus on advanced SAP Security: rWeb
4. Focus on advanced SAP Security incl. XML-traffic: rWeb with XML-functionality
5. Focus on securing SAP R/3: rWeb + Corisecio Tool Kit

Attachments:

White paper - 10 years of application security	[White paper - 10 years of application security]
Livre Blanc - 10 ans de sécurité applicative	[Livre Blanc - 10 ans de sécurité applicative]