Imperva, Kavado Firewalls Lock Down Web Applications

 
 
By Andrew Garcia  |  Posted 2005-05-16 Print this article Print
 
 
 
 
 
 
 

SecureSphere 3.3 and Defiance TMS provide a strong layer of protection against Net attacks.

Companies looking to avoid the disgrace of losing confidential customer data via a compromise of publicly accessible Web applications should seriously consider deploying a Web application firewall. eWEEK Labs reviewed two of the most recent releases: Imperva Inc.s SecureSphere 3.3 Dynamic Profiling Firewall and Kavado Inc.s Defiance TMS.

Although Web application firewalls add layers of complexity and cost to the public network, they provide in-depth and accurate protection for Web applications—isolating problems that traditional firewalls and IPSes (intrusion prevention systems) miss.

Web application firewalls provide positive security protection based on compiled profiles of legitimate URLs, fields and buffer lengths. These profiles provide a base line of expected and real application behavior and allow Web application firewalls to be configured to allow only legitimate traffic.

The newest Web application firewalls provide improved application learning routines and integration with application scanners. These features help ease the process of accurately configuring profiles that closely model true application structure, enforcing legitimate behavior from users, minimizing troublesome false positives and helping to avoid zero-day attacks.

Web application firewall vendors are expected later this year to add features and hardware capabilities to their products that will blur the distinction between devices providing Web application defense and those accelerating applications.

Web application firewall vendors such as Teros Inc. and NetContinuum Inc. already provide compression to back-end servers to improve resource utilization. In addition, with F5 Networks Inc.s purchase last year of MagniFire WebSystems, we expect to see F5 merge Web application security technology into its flagship Big-IP line by the end of the year.

Click here to read the review of SecureSphere 3.3. Click here to read the review of Defiance TMS. Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.

 
 
 
 
Andrew cut his teeth as a systems administrator at the University of California, learning the ins and outs of server migration, Windows desktop management, Unix and Novell administration. After a tour of duty as a team leader for PC Magazine's Labs, Andrew turned to system integration - providing network, server, and desktop consulting services for small businesses throughout the Bay Area. With eWEEK Labs since 2003, Andrew concentrates on wireless networking technologies while moonlighting with Microsoft Windows, mobile devices and management, and unified communications. He produces product reviews, technology analysis and opinion pieces for eWEEK.com, eWEEK magazine, and the Labs' Release Notes blog. Follow Andrew on Twitter at andrewrgarcia, or reach him by email at agarcia@eweek.com.
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
 
 
Rocket Fuel