Powered by

Incapsula Cloud WAF

Enero - 2013

Incapsula Cloud WAF Overview

3

Threat Central 360 Global Threat Detection & Analysis

Enables early detection across the entire proxy network:

Threats Attack vectors Instant application of protection rules

Reverse Proxy Network Globally Distributed, High-Performance Reverse Proxies

Inspect web traffic Enforce application protection

Incapsula Cloud WAF Delivery Model

100% Cloud-based service + Can be consumed by any cloud-based web application

+ Other WAF solutions are software or appliance based

– Can not be deployed on public cloud infrastructures

Capacity elasticity + Customers don’t have to provision for additional capacity or pay for excess

capacity

Flexible pricing plans + Pay as you go & grow (1-yr, 2-yr, 3-yr subscriptions)

+ Payment per capacity and number of websites

4

Ideal for Cloud Platforms/Applications

Perfect for Small to Mid-Enterprise Businesses

Effortless deployment + Performed by making a simple DNS change

+ No software or hardware to install, no application changes

Affordable and lowest total cost of ownership + Software-as-a-Service delivery model

+ Low annual costs significantly reduces capital expenditures and operational costs

+ Does not require additional resource investment

Imperva world-class security expertise + Around the clock health monitoring and support

+ Continuous policy tuning and proactive security event management

+ Threat alert notifications and security reports

5

Service Provider Oriented

Multi-tenant architecture

Effectively manage a large portfolio of customers with minimal human resources

Extend enterprise-grade application security to customer base

Use as a platform for offering additional, value-added IT services

6

Web Application Security

Full Blown, Enterprise-grade Web Application Firewall + Leverages years of Imperva security expertise with a new SaaS-based delivery

model

Protects against current application level threats + SQL Injections

+ Cross Site Scripting

+ Illegal resource access

+ Malicious bots

+ And OWASP Top 10 threats

+ Completely eliminates automated and undesired traffic to your site

o Spam bots o Content scraping o etc.

Achieve PCI compliance (PCI DSS 6.6)

7

Improve Website Performance

Dynamic Content Caching + Advanced algorithms that ensure page freshness while significantly reducing

server load

Traffic Shaping + Transformation of cached content into an optimized format to speedup

delivery

Connection Optimization + Smart handling of session connections to accelerate traffic delivery

Reduce bandwidth usage (50%+)

8

Monitoring & Improved Reliability

Reduce Web server load (25%+) + Improved server utilization due to caching

Ensure optimal performance + Monitor EVERY web transaction

+ Identify website errors and slow loading pages

+ Automatically alerts you to minimize downtime

Automatic alerts when site is down or errors occur + Pin-points root cause of issues

+ Correlates client characteristics, referrers and overall throughput

9

Incapsula Cloud DDOS Protection

Load distribution

Scaling to multi-gigabit throughput

Preserves uptime

Load distributed on Imperva Cloud

DDoS attack traffic is blocked

Websites

2 Gbps

20 Mbps

Full DDoS Attack Protection

Stops all DDoS threats

+ Application & network attacks

+ Proprietary technology

differentiates humans from bots & search engines

– Analyzes HTTP redirect, cookie, and JavaScript execution capabilities

Scales beyond customer’s Internet connection limit

+ Plans support DDoS attacks that burst to 2 Gbps or 4 Gbps

11

User Attacker Malicious Bot

Search Engine

12

Security Menu Basic (Included)

Advanced

Security alert email notifications X X

Incident response Ad-hoc Pro-Active

Policy tuning Ad-hoc Pro-Active

Dashboard and stats X X

Weekly report X X

Auto-generate tickets via email or phone X X

Online customer portal to view or edit an open ticket X X

24x7 Support X X

SLA (Response time) General - 8 hr

Critical - 4 hr

General – 4 hr

Critical – 2 hr

Cloud WAF Managed Security Service

Incapsula Cloud WAF Summary

Incapsula Cloud WAF helps organizations Meet PCI compliance requirement 6.6

Avoid search engine blacklisting

Safeguard websites from current and emerging threats

Reduce bandwidth

Reduce web server load

13

Powered by

Product Demo

Imperva, Inc.

950 Tower Lane, Suite 1550, Foster City, CA 94404

Sales: +34 934 302 989 www.imperva.com

15

Easy Setup - Login

16

Easy Setup – Enter Domain

17

Easy Setup – Automatically gather site data

18

My Sites

19

Easy Setup – Update A Record & CNAME

20

My Sites

21

Dashboard - Traffic

22

Dashboard - Traffic

23

Dashboard - Threats

24

Dashboard - Performance

25

Dashboard – Recent Updates

26

Visits

27

Visits - More

28

Visits – Add to Whitelist

29

Settings - General

30

Settings - Notifications

31

Settings - Threats

32

Settings - Threats

33

Settings - Threats

34

Settings - Access

35

Settings - Permissions

Francesc Carbonell 21-23

Esc. A Enlo. 3ª

08034 Barcelona

Tel. 934 302 989

Fax 934 306 300

Síguenos