TrafficShield Application Firewall
F5's TrafficShield is a Web Application Firewall that provides comprehensive, proactive, application-layer protection against both generalised and targeted attacks. TrafficShield employs a positive security model ('deny all unless allowed') to permit only valid and authorised application transactions, while automatically protecting critical Web applications from attacks such as Google hacking, cross-site scripting, and parameter tampering.
The TrafficShield Difference
TrafficShield is the only Web application security solution able to protect against known and unknown attacks, and able to counter protection-resistant threats undetectable by other means.
The real-time request-flow analysis performed utilising the purpose built hardware embedded in TrafficShield allows for accurate detection of attacks and malicious traffic staged through individual and multiple (stream) requests.
TrafficShield is also unique in its ability to correlate information from all layers, even protecting against so-called "zero-day" Web infrastructure exploits, to enable maximum business-critical transaction throughput at all times.
Lastly, TrafficShield is designed for providing a highly resilient and scalable architecture to ensure Web-based applications and services uptime and integrity in the event of attacks and floods whether premeditated or due to an unexpected and legitimate "flash crowd".
Enforces A Positive Security Logic
TrafficShield protects Web infrastructure and Web applications from attacks based on invalid and/or illegal user requests. It does this by enforcing positive security logic on incoming HTTP/HTTPS traffic. As a result, only valid and legitimate requests - those that comply with the positive security policy built on application logic are served, and all other requests are blocked.
Correlation of input parameters within incoming requests and served Web pages prevent cookie poisoning, hidden field manipulation and form-field parameter tampering.
Other mechanisms are used to eliminate session hijacking/replay attempts, prevent leakage of information on the Web server (including possible vulnerabilities due to incomplete patching) and intercept other activities which are part of reconnaissance or enumeration attacks.
Offers A Powerful System Architecture
TrafficShield's unique system consists of hardened appliances designed to scale according to the traffic processing and protection requirements of the site it is intended to protect. Even the most sophisticated attacks can be efficiently identified, isolated and eliminated without producing any negative affect on the site's performance and without harming legitimate application transactions.
|
