Powered by. Incapsula Cloud WAF

Transcription

1 Powered by Incapsula Cloud WAF Enero

2 Incapsula Cloud WAF Overview

3 Incapsula Cloud WAF Delivery Model Threat Central 360 Global Threat Detection & Analysis Enables early detection across the entire proxy network: Threats Attack vectors Instant application of protection rules Reverse Proxy Network Globally Distributed, High-Performance Reverse Proxies Inspect web traffic Enforce application protection 3

4 Ideal for Cloud Platforms/Applications 100% Cloud-based service + Can be consumed by any cloud-based web application + Other WAF solutions are software or appliance based Can not be deployed on public cloud infrastructures Capacity elasticity + Customers don t have to provision for additional capacity or pay for excess capacity Flexible pricing plans + Pay as you go & grow (1-yr, 2-yr, 3-yr subscriptions) + Payment per capacity and number of websites 4

5 Perfect for Small to Mid-Enterprise Businesses Effortless deployment + Performed by making a simple DNS change + No software or hardware to install, no application changes Affordable and lowest total cost of ownership + Software-as-a-Service delivery model + Low annual costs significantly reduces capital expenditures and operational costs + Does not require additional resource investment Imperva world-class security expertise + Around the clock health monitoring and support + Continuous policy tuning and proactive security event management + Threat alert notifications and security reports 5

6 Service Provider Oriented Multi-tenant architecture Effectively manage a large portfolio of customers with minimal human resources Extend enterprise-grade application security to customer base Use as a platform for offering additional, value-added IT services 6

7 Web Application Security Full Blown, Enterprise-grade Web Application Firewall + Leverages years of Imperva security expertise with a new SaaS-based delivery model Protects against current application level threats + SQL Injections + Cross Site Scripting + Illegal resource access + Malicious bots + And OWASP Top 10 threats + Completely eliminates automated and undesired traffic to your site o Spam bots o Content scraping o etc. Achieve PCI compliance (PCI DSS 6.6) 7

8 Improve Website Performance Dynamic Content Caching + Advanced algorithms that ensure page freshness while significantly reducing server load Traffic Shaping + Transformation of cached content into an optimized format to speedup delivery Connection Optimization + Smart handling of session connections to accelerate traffic delivery Reduce bandwidth usage (50%+) 8

9 Monitoring & Improved Reliability Reduce Web server load (25%+) + Improved server utilization due to caching Ensure optimal performance + Monitor EVERY web transaction + Identify website errors and slow loading pages + Automatically alerts you to minimize downtime Automatic alerts when site is down or errors occur + Pin-points root cause of issues + Correlates client characteristics, referrers and overall throughput 9

10 Incapsula Cloud DDOS Protection 20 Mbps Load distributed on Imperva Cloud Websites 2 Gbps DDoS attack traffic is blocked Load distribution Scaling to multi-gigabit throughput Preserves uptime

11 Full DDoS Attack Protection Stops all DDoS threats + Application & network attacks + Proprietary technology differentiates humans from bots & search engines User Attacker Malicious Bot Analyzes HTTP redirect, cookie, and JavaScript execution capabilities Search Engine Scales beyond customer s Internet connection limit + Plans support DDoS attacks that burst to 2 Gbps or 4 Gbps 11

12 Cloud WAF Managed Security Service Security Menu Basic (Included) Advanced Security alert notifications X X Incident response Ad-hoc Pro-Active Policy tuning Ad-hoc Pro-Active Dashboard and stats X X Weekly report X X Auto-generate tickets via or phone X X Online customer portal to view or edit an open ticket X X 24x7 Support X X SLA (Response time) General - 8 hr Critical - 4 hr General 4 hr Critical 2 hr 12

13 Incapsula Cloud WAF Summary Incapsula Cloud WAF helps organizations Meet PCI compliance requirement 6.6 Avoid search engine blacklisting Safeguard websites from current and emerging threats Reduce bandwidth Reduce web server load 13

14 Powered by Product Demo Imperva, Inc. 950 Tower Lane, Suite 1550, Foster City, CA Sales:

15 15 Easy Setup - Login

16 16 Easy Setup Enter Domain

17 17 Easy Setup Automatically gather site data

18 18 My Sites

19 19 Easy Setup Update A Record & CNAME

20 20 My Sites

21 21 Dashboard - Traffic

22 22 Dashboard - Traffic

23 23 Dashboard - Threats

24 24 Dashboard - Performance

25 25 Dashboard Recent Updates

26 26 Visits

27 27 Visits - More

28 28 Visits Add to Whitelist

29 29 Settings - General

30 30 Settings - Notifications

31 31 Settings - Threats

32 32 Settings - Threats

33 33 Settings - Threats

34 34 Settings - Access

35 35 Settings - Permissions

36 Francesc Carbonell Esc. A Enlo. 3ª Barcelona Tel Fax Síguenos