Web Intelligence is a Web application firewall technology that provides complete protection for the entire Web environment. Supported by VPN-1 UTM, VPN-1 Power, VPN-1 UTM Edge, and Connectra, it provides a multi-layer defense for the network, operating systems, Web servers, and backend systems it protects.
Web Intelligence is supported by SmartDefense Services, which protect against new threats by providing real-time defense updates and configuration advisories.
Benefits
- Establishes strongest buffer-overflow protection against known and unknown attacks
- Offers application-level Web security at wire-speed
- Improves end-user experience by inserting helpdesk Web pages
- Provides quick deployment for mission-critical applications
- Protects against new threats through SmartDefense Services
Advanced Streaming Inspection
Advanced Streaming Inspection is a Check Point kernel-based technology that processes the overall context of communication. Advanced Streaming Inspection, like Stateful Inspection and Application Intelligence, is based upon Check Point’s INSPECT engine. Advanced Streaming Inspection can make real-time security decisions based on session and application information. It allows Web Intelligence to understand Web communication even when it spans multiple TCP segments. Starting in Web Intelligence, process intensive application inspections are now offloaded to the kernel level, dramatically improving throughput and connection rates.
Protection on the Fly
Advanced Streaming Inspection introduces Active Streaming in Web Intelligence, with the capability to modify content of a Web connection on the fly. This important capability offers several unique advantages to Check Point customers. Active Streaming introduces HTTP header spoofing capability, providing a first-level of defense by hiding important site-specific properties about the Web environment. These properties often include name and version of operating systems, Web servers, and back-end servers. This information is typically useless to end users, but extremely valuable to attackers who are trying to gather reconnaissance information about their target. Web Intelligence can intercept a Web response that contains server identity and gives the administrator the option to either completely hide such disclosure, or optionally change the stream to confuse attackers.
Enhanced Usability
Active Streaming also improves the end user experience by allowing administrators to predefine custom error pages. To most users, generic error status codes are meaningless. With Active Streaming, the end user can be directed to a custom-defined error page with meaningful helpdesk hints. This feature dramatically improves the end user experience and reduces helpdesk costs.
