The Brocade SteelApp Web Application Firewall is a scalable solution for application-level security, both for off-the-shelf solutions and complex custom applications, including third-party frameworks. It can be used to apply business rules to online traffic, inspecting and blocking attacks such as SQL injection and cross-site scripting (XSS), while filtering outgoing traffic to mask credit card data, and help compliance with PCI-DSS and HIPAA by filtering of outgoing data.
Brocade SteelApp Application Firewall is a scalable Web application firewall designed to support the largest global applications against Layer 7 attacks. With a component-based architecture and modular construction, it’s easily deployable in both public cloud ad enterprise data center environments, making it a scalable solution for application-level security. It can apply business rules to online traffic, inspecting and blocking attacks such as SQL injection and cross-site scripting, while filtering outgoing traffic to mask credit card data.
With the massive growth and scale in online business, there is continued pressure to roll out new products and services. That means frequent code updates and changes that add to the complexity of software development. Modern applications are created from building blocks such as off-the-shelf packages, in-house services and third-party components and frameworks, and every one of these has individual loopholes and vulnerabilities.
Complex applications are easier targets, especially when developers are under pressure to meet deadlines and secure customer data. Application and security teams can find it difficult to resolve application vulnerabilities in today’s dynamic IT environment, and sometimes application vendors are unable to provide patches quick enough to meet campaign deadlines and product release cycles.
Applications that migrate to a public cloud infrastructure carry the risks of exposing protected software to external threats that they were not designed to handle. Common security threats include injection attacks, and cross-site scripting or cross-site request forgery. There are many security challenges involved in developing Web applications in a cloud, such as parameter validation, session management, and access control, which are key “hotspots” for attackers. If developers have limited experience designing for application security, they are more likely to create applications that have security problems.
OWASP, the Open Web Application Security Project, is the leading open-source community group in Web application security, and regularly publishes an annual “Top Ten” report showing the most common security challenges to online applications, ranging from business policy to application vulnerabilities. Because of the risk of high-value data leakage, these kinds of vulnerability can give rapid unauthorized access to customer and enterprise information.
This security challenge underscores the need for a solution that is able to validate inputs against business policies and screen outgoing data for suspected data leakage in a way that is independent of the underlying application architecture. And it doesn’t help that each year would-be attackers use new tools and techniques to identify new gaps and loopholes that could be exploited.
The Brocade SteelApp Web Application Firewall is agile enough to adapt to changing risk priorities, and robust enough to handle large-scale attacks on high-throughput Web applications processing millions of customers and transactions.