Key features of R&S®Web Services Firewall

With R&S®Web Services Firewall, optimize the performance and security of your Web Services

key features of Web Services Firewall

Workflow Engine

Workflow-based configuration and policy visualization help security admins and DevOps team to collaborate productively.

Workflow Engine

Optimizing XML traffic and configuring Web Services security is as simple as dropping boxes and dragging arrows. Making complex data flows and policy understandable by people not familiar with that.


WSF deployment can be automated using an API, thus increasing time-to-market and agility, while reducing cost of ownership.


Automate basic administrative tasks, including initial setup and policy configuration, on-going monitoring and reporting activities.

WS Security

Protect your web services from denial of service, xPath injections, brute force, data leakage and intrusion attempts.

WS Security

XML parsing and scheme validation for DTD, WSDL, XSD, WADL. REST profiling and security using JSON or XML formats. Extensive xPath injection protection filters.

API Gateway

With its flexible workflow and content rewriting and routing capabilities, WSF can easily replace an API Gateway.

API Gateway

Ability to encrypt and decrypt parts of the content. SAML authentication integration as a Service Provider. Can also act as the Identity Provider (IDP) at the same time, or be integrated with any other IDP.

Services Learning

Discover all members of your Web Services, profile them and understand the communications you need to secure.

Services Learning

Check all incoming namespaces, nodes, types and all possible values to understand how the web service actually works.

Log Replay

Test new security policies using logged traffic to reduce false positives and perform forensics analysis in case of attack.

Log Replay

Use WSF logs to simulate the data running through a new version of the security policy, before validating it, making sure legal requests are not blocked. Or understand what happened, after the fact.

Virtual Patching

Fine-tune policy based on the outcome of a vulnerability scan until the vulnerabilities are fully remediated.

Virtual Patching

Use R&S®Vulnerability Manager to verify the efficiency of your security policy. R&S®Web Services Firewall can read the scan report and suggest configuration changes, thus virtually patching vulnerabilities.


Extend the security to web traffic (R&S®Web Application Firewall) and Web Single Sign On (R&S®Web Access Manager).


R&S®Web Application Firewall adds the ability to secure http/https traffic. R&S®Web Application Manager handles Web SSO for users, beyond the various authentication methods already supported (client certificates, SAML, Radius, LDAP, etc).

Certification & Awards

Rohde & Schwarz Cybersecurity is trusted by 600 demanding customers in all sectors of activity and awarded for its innovation and reliability

Certified by ANSSI (CSPN)

The French national agency for information security has certified R&S®Web Application Firewall for its first level security certification.

Label France Cybersecurity

Rohde & Schwarz Cybersecurity is awarded “France Cybersecurity Label” by the French government, which proves the quality and performance of our Web Application Firewall (WAF).

Gartner’s MQ for WAFs

In the 2017 Magic Quadrant for Web Applications Firewalls, Gartner underlines the ease of use and in-depth security features of R&S®Web Application Firewall.

Why choose R&S®Web Services Firewall?

Discover why relying on R&S®Web Services Firewall is the right decision for you

  • Administration productivity

    Because you need your admins and developers to collaborate and release code fast without losing time on repetitive tasks.

  • Efficient Security

    Because you need to actually block attacks targeting your Web Services and can’t afford false positive to be generated.

  • Application Security Innovation

    Because you know old recipes don’t work and want to take advantage of innovative approaches in application security

  • Virtual patching

    Because you need to discover those unprotected, vulnerable web services members and make sure they are covered too.

  • Ubiquitous Security

    Because you need to protect all web services members, including those outside of your direct control.

  • NextGen Application Security

    Because protecting your IT requires an integrated solution, combining scanning, web application/services security and user access.

Form Factors

Deploy your Web Services Firewall (WSF) anywhere, even in the cloud


Dell appliance bundles

Rohde & Schwarz Cybersecurity appliances offer price/performance choice that meet the IT needs of small and large companies. No installation needed, it takes only a few minutes to deploy a WSF.


Virtual machine (VM)

The software relies on a CentOS Linux operating system which has been optimized and hardened to meet the most stringent requirements in terms of security and performance.


Cloud-based solution

Rohde & Schwarz Cybersecurity takes application security to the cloud and is delivering WSF on the Amazon Web Services marketplace, on Microsoft Azure and on many OpenStack platforms


Cloud Protector

Leveraging the scalability of the cloud, R&S®Cloud Protector removes the need for technical expertise and simplifies the steps required to protect and accelerate any web site.

Customer references

What our customers are saying about R&S®Web Services Firewall.

R&S®Web Application Firewall allows us to maintain a high level of security for our internal and external applications while remaining in line with ANSSI recommendations.
Denis LionnetCISO

Download R&S®Web Services Firewall Datasheet