Trustave WAF Web Application Firewall

Trustwave WebDefend® - Web Application Firewall

Trustwave WebDefend is a Web application firewall appliance that provides organizations with continuous, real-time Web application-specific security.

WebDefend is an advanced Web application firewall that offers customized, behavior-based security for each protected application. Only WebDefend uses a patent-pending profiling system and multiple, collaborative detection engines to ensure the flow of mission-critical traffic while supplying complete protection for applications to keep the organization's confidential information safe from targeted attacks and leaks.

Benefits of Trustwave's Web Application Firewall, WebDefend

• Easily scalable in multi-application environments across multiple data centers
• Facilitates compliance with PCI DSS Requirement 6.6
• Identifies application issues that jeopardize revenue, diminish the customer experience and threaten the security of sensitive information
• Opens timely communication between security, development and management teams
• WebDefend Global Event Manager provides security for distributed cloud and data center architectures
• Easy-to-use management console for remediating events immediately and powerful reporting tools for compliance requirements and escalating issues
• Integrates with Trustwave Security Information and Event Management (SIEM)

Using bi-directional traffic analysis, automated behavioral profiling and multiple collaborative detection engines WebDefend also identifies Web application issues that can affect their security, functionality and availability.

Web Application Firewall Key Features: Attack Detection and Prevention

• Dynamic security models: Ensure that only valid traffic is allowed in or out.
• Monitors uncompressed or compressed Web traffic: Profile HTML, XML, and SOAP
• Inspects outgoing traffic: Protects against data loss, defacement and detailed security information.
• Application layer signatures: Provide actionable information on detected vulnerabilities.
• PCI DSS compliance: Pre-packaged reports provide an immediate view of a Web application's overall level of compliance and details of sensitive information use for audit purposes.
• Immediate integrity and security issue detection: Programming mistakes, application errors, and insecure code can be quickly identified and easily remediated.
• Intuitive, instructive console: The easy-to-use WebDefend Management Console provides a single point of configuration and monitoring.
• System level dashboard: A system level dashboard providing a flexible summary overview of the security throughout protected Web application environments along with real-time status reporting on all systems in a WebDefend deployment.
• Web application performance monitoring: Provides real-time visibility into the performance of Web applications at the site, URL, and session level.
• Geo-location blocking: Blocking can be customized to prevent requests generated by specific countries.

Web Application Firewall Datasheet

Trustwave WebDefend Demonstration Video: http://www.youtube.com/watch?v=QJSapWHuG-w

Web Application Security Overview

Trustwave's 360 Application Security Program, delivered by the experts at Trustwave SpiderLabs, helps to ensure security is at the foundation of application development and ongoing operations. By combining both offensive and defensive security techniques, this program provides continuous application protection to defend against persistent threats.

The Application Security Program delivers the following key services:

• Application Code Review
• Application Penetration Testing
• Web Application Firewall with Virtual Patching
• Secure Development Training

By implementing a holistic approach to application security, Trustwave customers are able to improve their organization's ability to produce and manage stable, secure applications.