Do you want to secure your WEB applications (1.0 and 2.0) and/or your WEB services with a product that can cover all of your WEB security problems ?
Do you think that implementing security should not be detrimental to the user experience ?
Based on patented technologies, rWeb is a WEB application firewall deployed at the front end of applications.
It authenticates users and filters all HTTP(S) flows form the Internet, or the intranet.
It is simple to implement negative security modules (black-list and scoring list) in just a few minutes. rWeb then protects against application attacks (SQL injection, Code injection, Cross Site Scripting …(see white paper TOP 10)
rWeb allows you to use a positive security model that can be easily implemented using the tools provided with:
• “scanweb” (a crawler that scans the site)
• “rules wizard” used to generate a white list automatically
Using the “XML” option, rWeb becomes an XML FireWall that provides the required level of security to protect WEB services.
rWeb improves the user experience by speeding up WEB traffic and facilitating access to resources (SSO).
rWeb also responds the need to comply with standards such as PCI-DSS.
The rWeb application firewall is available as an appliance or as software.
Application Security
| FUNCTIONALITY |
BENEFITS |
| Protocol inspection |
Protects against attacks using weaknesses in the HTTP protocol |
| Anti evasion |
Protects against encoded attacks |
| Anti DOS |
Protects against application service denials |
| Black list |
Protects against “simple” attacks |
| Scoring List |
Protects against variable structure attacks by generating a much lower level of false positives than old-generation application firewalls that only use a blacklist |
| White list |
Enhances the security level by rejecting anything not authorised in advance |
| Statefull Tracking |
Protects against cookie manipulation |
| Anti Cookie Stealing |
Protects against cookie stealing |
| Anti Brute force |
Protect against fraudulent access |
| Authentication |
Allows the secure implementation of an extranet |
| SSO |
Facilitates secure user access to resources |
| File upload control |
Anti-virus analysis of uploaded files |
| Outgoing filtering |
Protects against data loss |
| Virtual Patching |
Used to correct an application vulnerability without having to modify the source code of the application |
| XML Firewall |
Protects against attacks that target WEB services |
Web Performance
| FUNCTIONALITY |
BENEFITS |
| Cache |
Improves user experience by relieving the server of processing static pages |
| SSL Offload |
Improves user experience by relieving the web server of SSL processing |
| TCP multiplexing |
Improves user experience by relieving the WEB server of processing a large number of TCP connections |
| Compression |
Improves user experience by improving the transfer rate |
| Load Balancing |
Spreads heavy traffic over several WEB servers |
Infrastructure Security
| FUNCTIONALITY |
BENEFITS |
| Reverse Proxy |
Improves the level of security by providing a protocol break and virtualising the application infrastructure |
| Multi DMZ |
Improves the level of infrastructure security by deploying rWeb in two different DMZs (public DMZ and private DMZ) |
| Diode Mode |
Improves the level of infrastructure security by implementing Firewall rules that make the public DMZ totally “watertight” |
| Transparent Mode |
Facilitates the integration of rWeb into the infrastructure. (deployment without modification of the architecture) |
| High availability |
Allows replacement and automatic traffic rerouting in the event of a hardware breakdown |
Conformity
| FUNCTIONALITY |
BENEFITS |
| Encryption of logs |
Facilitates obtaining PCI-DSS certification |
| Tracking of actions made by the administrator |
Facilitates obtaining PCI-DSS certification |
| Password policy management |
Facilitates obtaining PCI-DSS certification |
