Protocol break, distribution and infrastructure hiding

As the single point of entry for all incoming and outgoing web application flows, the reverse proxy server operates a protocol break which provides a critical first level of protection against application-layer attacks. By inserting themselves into the Web traffic, the DenyAll products can confirm the validity of the connection attempts, hide the application infrastructure from the outside and intercept attacks targeting internal Web servers.

The benefits of a reverse proxy architecture are the following:

• Highest level of security available in the market thanks to the in-depth analysis of the web application flows.
• Flexibility and scalability, enabling:
  • - The distribution of functionality across several WAFs,
  • - The delegation of authentication to third party servers,
  • - The offloading of web servers by terminating the security tunnels,
  • -  A seamless integration into an existing architecture (load-balancers, etc)
    

Compared to other architectures which do not perform a clean protocol break, the reverse proxy architecture delivers unparalleled security and scalability levels.

Attachments:

White paper- 10 years of application security	[White paper- 10 years of application security]
Livre Blanc - 10 ans de sécurité applicative	[Livre Blanc - 10 ans de sécurité applicative]