Key features of DenyAll Web Services Firewall

With DenyAll Web Services Firewall, optimize the performance and security of your Web Services

key features of Web Services Firewall

Workflow Engine

Workflow-based configuration and policy visualization help security admins and DevOps team to collaborate productively.

Workflow Engine

Optimizing XML traffic and configuring Web Services security is as simple as dropping boxes and dragging arrows. Making complex data flows and policy understandable by people not familiar with that.

Industrialization

WSF deployment can be automated using an API, thus increasing time-to-market and agility, while reducing cost of ownership.

Industrialization

Automate basic administrative tasks, including initial setup and policy configuration, on-going monitoring and reporting activities.

WS Security

Protect your web services from denial of service, xPath injections, brute force, data leakage and intrusion attempts.

WS Security

XML parsing and scheme validation for DTD, WSDL, XSD, WADL. REST profiling and security using JSON or XML formats. Extensive xPath injection protection filters.

API Gateway

With its flexible workflow and content rewriting and routing capabilities, WSF can easily replace an API Gateway.

API Gateway

Ability to encrypt and decrypt parts of the content. SAML authentication integration as a Service Provider. Can also act as the Identity Provider (IDP) at the same time, or be integrated with any other IDP.

Services Learning

Discover all members of your Web Services, profile them and understand the communications you need to secure.

Services Learning

Check all incoming namespaces, nodes, types and all possible values to understand how the web service actually works.

Log Replay

Test new security policies using logged traffic to reduce false positives and perform forensics analysis in case of attack.

Log Replay

Use WSF logs to simulate the data running through a new version of the security policy, before validating it, making sure legal requests are not blocked. Or understand what happened, after the fact.

Virtual Patching

Fine-tune policy based on the outcome of a vulnerability scan until the vulnerabilities are fully remediated.

Virtual Patching

Use DenyAll Vulnerability Manager to verify the efficiency of your security policy. DenyAll WSF can read the scan report and suggest configuration changes, thus virtually patching vulnerabilities.

Extensibility

Extend the security to web traffic (DenyAll Web Application Firewall) and Web Single Sign On (DenyAll Web Access Manager).

Extensibility

DenyAll WAF adds the ability to secure http/https traffic. DenyAll WAM handles Web SSO for users, beyond the various authentication methods already supported (client certificates, SAML, Radius, LDAP, etc).

Certification & Awards

DenyAll is trusted by 600 demanding customers in all sectors of activity and awarded for its innovation and reliability

Certified by ANSSI (CSPN)

The French national agency for information security has certified DenyAll Web Application Firewall (WAF) for its first level security certification.

Label France Cybersecurity

DenyAll is awarded “France Cybersecurity Label” by the French government, which proves the quality and performance of our Web Application Firewall (WAF).

Gartner’s Magic Quadrant

In the 2015 edition of Gartner’s Magic Quadrant for Web Application Firewalls, DenyAll is identified as a Visionary, thanks to its innovation in security.

Why choose DenyAll Web Services Firewall?

Discover why relying on DenyAll WSF is the right decision for you

  • Administration productivity

    Because you need your admins and developers to collaborate and release code fast without losing time on repetitive tasks.

  • Efficient Security

    Because you need to actually block attacks targeting your Web Services and can’t afford false positive to be generated.

  • Application Security Innovation

    Because you know old recipes don’t work and want to take advantage of innovative approaches in application security

  • Virtual patching

    Because you need to discover those unprotected, vulnerable web services members and make sure they are covered too.

  • Ubiquitous Security

    Because you need to protect all web services members, including those outside of your direct control.

  • NextGen Application Security

    Because protecting your IT requires an integrated solution, combining scanning, web application/services security and user access.

Form Factors

Deploy your Web Services Firewall (WSF) anywhere, even in the cloud

HARDWARE

Dell appliance bundles

DenyAll appliances offer price/performance choice that meet the IT needs of small and large companies. No installation needed, it takes only a few minutes to deploy a WSF.

SOFTWARE

Virtual machine (VM)

The software relies on a CentOS Linux operating system which has been optimized and hardened to meet the most stringent requirements in terms of security and performance.

CLOUD

Cloud-based solution

DenyAll takes application security to the cloud and is delivering WSF on the Amazon Web Services marketplace, on Microsoft Azure and on many OpenStack platforms

AS-A-SERVICE

Cloud Protector

Leveraging the scalability of the cloud, Cloud Protector removes the need for technical expertise and simplifies the steps required to protect and accelerate any web site.

Additional resources

More information on DenyAll Web Services Firewall

DenyAll WAF

Fiche Produit DenyAll Web Application Firewall

DenyAll Web Access Manager

Datasheet DenyAll Web Access Manager

DenyAll Appliances

Datasheet Appliances

“NextGen WAF” white paper

DenyAll Corporate Backgrounder

Talk to a DenyAll Security Expert Today!