incapsula cloud waf - ingelan · imperva world-class security expertise ... incapsula cloud waf...
TRANSCRIPT
Powered by
Incapsula Cloud WAF
Enero - 2013
Incapsula Cloud WAF Overview
3
Threat Central 360 Global Threat Detection & Analysis
Enables early detection across the entire proxy network:
Threats Attack vectors Instant application of protection rules
Reverse Proxy Network Globally Distributed, High-Performance Reverse Proxies
Inspect web traffic Enforce application protection
Incapsula Cloud WAF Delivery Model
100% Cloud-based service + Can be consumed by any cloud-based web application
+ Other WAF solutions are software or appliance based
– Can not be deployed on public cloud infrastructures
Capacity elasticity + Customers don’t have to provision for additional capacity or pay for excess
capacity
Flexible pricing plans + Pay as you go & grow (1-yr, 2-yr, 3-yr subscriptions)
+ Payment per capacity and number of websites
4
Ideal for Cloud Platforms/Applications
Perfect for Small to Mid-Enterprise Businesses
Effortless deployment + Performed by making a simple DNS change
+ No software or hardware to install, no application changes
Affordable and lowest total cost of ownership + Software-as-a-Service delivery model
+ Low annual costs significantly reduces capital expenditures and operational costs
+ Does not require additional resource investment
Imperva world-class security expertise + Around the clock health monitoring and support
+ Continuous policy tuning and proactive security event management
+ Threat alert notifications and security reports
5
Service Provider Oriented
Multi-tenant architecture
Effectively manage a large portfolio of customers with minimal human resources
Extend enterprise-grade application security to customer base
Use as a platform for offering additional, value-added IT services
6
Web Application Security
Full Blown, Enterprise-grade Web Application Firewall + Leverages years of Imperva security expertise with a new SaaS-based delivery
model
Protects against current application level threats + SQL Injections
+ Cross Site Scripting
+ Illegal resource access
+ Malicious bots
+ And OWASP Top 10 threats
+ Completely eliminates automated and undesired traffic to your site
o Spam bots o Content scraping o etc.
Achieve PCI compliance (PCI DSS 6.6)
7
Improve Website Performance
Dynamic Content Caching + Advanced algorithms that ensure page freshness while significantly reducing
server load
Traffic Shaping + Transformation of cached content into an optimized format to speedup
delivery
Connection Optimization + Smart handling of session connections to accelerate traffic delivery
Reduce bandwidth usage (50%+)
8
Monitoring & Improved Reliability
Reduce Web server load (25%+) + Improved server utilization due to caching
Ensure optimal performance + Monitor EVERY web transaction
+ Identify website errors and slow loading pages
+ Automatically alerts you to minimize downtime
Automatic alerts when site is down or errors occur + Pin-points root cause of issues
+ Correlates client characteristics, referrers and overall throughput
9
Incapsula Cloud DDOS Protection
Load distribution
Scaling to multi-gigabit throughput
Preserves uptime
Load distributed on Imperva Cloud
DDoS attack traffic is blocked
Websites
2 Gbps
20 Mbps
Full DDoS Attack Protection
Stops all DDoS threats
+ Application & network attacks
+ Proprietary technology
differentiates humans from bots & search engines
– Analyzes HTTP redirect, cookie, and JavaScript execution capabilities
Scales beyond customer’s Internet connection limit
+ Plans support DDoS attacks that burst to 2 Gbps or 4 Gbps
11
User Attacker Malicious Bot
Search Engine
12
Security Menu Basic (Included)
Advanced
Security alert email notifications X X
Incident response Ad-hoc Pro-Active
Policy tuning Ad-hoc Pro-Active
Dashboard and stats X X
Weekly report X X
Auto-generate tickets via email or phone X X
Online customer portal to view or edit an open ticket X X
24x7 Support X X
SLA (Response time) General - 8 hr
Critical - 4 hr
General – 4 hr
Critical – 2 hr
Cloud WAF Managed Security Service
Incapsula Cloud WAF Summary
Incapsula Cloud WAF helps organizations Meet PCI compliance requirement 6.6
Avoid search engine blacklisting
Safeguard websites from current and emerging threats
Reduce bandwidth
Reduce web server load
13
Powered by
Product Demo
Imperva, Inc.
950 Tower Lane, Suite 1550, Foster City, CA 94404
Sales: +34 934 302 989 www.imperva.com
15
Easy Setup - Login
16
Easy Setup – Enter Domain
17
Easy Setup – Automatically gather site data
18
My Sites
19
Easy Setup – Update A Record & CNAME
20
My Sites
21
Dashboard - Traffic
22
Dashboard - Traffic
23
Dashboard - Threats
24
Dashboard - Performance
25
Dashboard – Recent Updates
26
Visits
27
Visits - More
28
Visits – Add to Whitelist
29
Settings - General
30
Settings - Notifications
31
Settings - Threats
32
Settings - Threats
33
Settings - Threats
34
Settings - Access
35
Settings - Permissions
Francesc Carbonell 21-23
Esc. A Enlo. 3ª
08034 Barcelona
Tel. 934 302 989
Fax 934 306 300
Síguenos