|
Firewall
para aplicaciones Web.
Es un
Firewall para aplicaciones web que provee protección completa,
proactiva, a nivel de red y a nivel de aplicaciones de todos los
ataques generalizados y dirigidos a través del entendimiento de la
interacción de los usuarios con el Firewall para aplicaciones.
TrafficShield emplea el modelo de seguridad positiva (Denegar todo
al menos sea permitido), para así permitir solo las transacciones
autorizadas y validas a la aplicación, mientras protegemos de manera
automática las aplicaciones Web criticas de ataques tales como:
Google hacking, cross-site scripting y alteración de parámetros.
Características y Beneficios
Seguridad de Aplicaciones Web Comprensivas - Protege contra
todas las clases de ataques basados en amenazas HTTP y HTTPS
(conocidos y no conocidos) en vez de proteger contra una lista
limitada de ataques.
Protección basadas en appliance - Protege los servidores de
ataques y asegura que solo las respuestas validas pasen.
Protección contra ataques dirigidos - Protege a los scanner
y otros dispositivos automatizados que se no se pueden defender
solos de ataques dirigidos, ya que estos ataques involucran a
usuarios maliciosos en búsqueda de vulnerabilidades únicas y
particulares de una sesión. TrafficShield detecta y mitiga
ataques sin patrones en tiempo real, añadiendo protección
complementaria a los sistemas IDS y Firewall, los cuales no pueden
tratar de forma eficaz las amenazas de naturaleza HTTP y HTTPS.
Random Attack Protection - Application layer packet
inspection and behavioral logic protect against counterfeit
application activity, providing precise attack mitigation and
granular blocking against script kiddies, known worms and
vulnerabilities, requests for restricted object and file types, and
other known exploits.
Security Policy Management - Automatically generates and
enforces application security policies that are easy to manage,
intuitive, and incredibly accurate.
Comprehensive Network Security Services - Provides a secure
reverse proxy, including SSL acceleration, termination, and re-encryption
to web servers, key management and failover handling, and basic
network firewalling capabilities.
Web Server Protection - Hides your web infrastructure so
that hackers can't tell what servers you're running. Strips out
identifying operating system and web server information from message
headers, conceals any HTTP error messages from users, and removes
application error messages from pages sent to users while checking
to make sure no server code leaks out onto web pages.
VLAN support - Delivers maximum flexibility for easier
deployments.
Protección total.
TrafficShield protege contra amenazas de aplicación, red e
infraestructura, tales como:
-
Inyección de comandos SQL
-
Cross-Site Scripting
-
Inyección de comandos
-
Evenenamiento de los
Cookie/Session
-
Buffer Overflow
-
Parameter/Form Tampering
-
Google Hacking (Forceful Browsing)
-
Error
Message Interception
-
Application Platform Exploits
-
Zero
Day Attacks
Based On The Powerful TMOS Architecture
Integrated with F5's powerful TMOS operating system, TrafficShield
can now leverage many of the pre-existing capabilities of TMOS,
including:
-
SSL Acceleration
SSL key exchanges, certificate management and AES encryption are
processed through the TMOS architecture while extending the
capability of TrafficShield.
-
iRules
A scripting language that gives IT professionals unparalleled
application awareness and network control.
-
Network Administration
TMOS enables TrafficShield to configure and manage network level
functionality such as VLANs, failover and routing.
-
Client Authentication
LDAP, RADIUS, TACACS+, Client Certificate-based LDAP and OCSP
authentication profile types are now supported on TrafficShield.
-
Packet Filtering
Enables TrafficShield to identify and filter traffic at the
packet level, providing exhaustive security at both the network
and application layers.
-
TCP Stack Optimization
With TrafficShield on TMOS, end users can also enjoy the
advantages of F5's highly optimized TCP stack, reducing the
effects of chattiness, congestion, and packet loss recovery.
Positive Security Protects Against Targeted Attacks
Scanners and other automated devices can't defend against targeted
attacks because these attacks involve a malicious user seeking
vulnerabilities unique to a particular application. Only an
application specific security policy can protect against this type
of threat. TrafficShield's purpose-built hardware and patent-pending
software detect and mitigate patternless exploits in real time,
adding accurate, complementary protection to existing firewalls and
Intrusion Detection Systems (IDS), which cannot address HTTP and
HTTPS-borne threats efficiently.
Comprehensive Network Security Services
TrafficShield provides a secure reverse proxy, including SSL
acceleration, termination and re-encryption to web servers, key
management and failover handling, and basic network firewalling
capabilities.
Web Server Protection (Cloaking)
TrafficShield hides your web infrastructure so that hackers can't
tell what servers you're running. It strips out identifying OS and
web server information from message headers, conceals any HTTP error
messages from users and removes application error messages from
pages sent to users, and checks to make sure no server code leaks
out onto web pages.
F5 Application Traffic Management
TrafficShield is complementary to F5's FirePass SSL VPN Remote
Access and BIG-IP Traffic Management product lines. As FirePass
secures user-to-application access, the TrafficShield product
ensures that only valid traffic reaches the application. Combine
with F5's BIG-IP for a powerful, holistic approach to the secure and
optimized delivery of your applications.
Flexible Deployment Options
TrafficShield can be deployed in a variety of security postures
depending on customer needs. A standard implementation can take less
than a day and provides protection against the most common
application attacks. Our optional 'Advanced Policy Customization'
module allows customers to fully tailor their policy as required,
providing the most granular protection in the industry.
Availability
TrafficShield is available as a stand alone solution on TMOS, or
through the BIG-IP® Application Security Module (ASM), which is a
software solution that runs on the BIG-IP v9 system. Please contact
your F5 representative for more details.
Datasheet mas
información.....
|
