Industry Leading Web Application Security
The SecureSphere Web Application Firewall enables businesses to efficiently maintain control over critical data, while providing secure and transparent protection for Web applications.
Automate Security Operations
Automated data security policy development and maintenance eliminates the need for manual configuration and tuning, while SecureSphere®'s drop-in deployment enables its superior security capabilities to begin working without requiring any changes to the Web application or network. Transparent Inspection technology delivers multi-gigabit performance, sub-millisecond latency, and multiple high availability options that meet the most demanding data center requirements.
By monitoring live application activity and applying Imperva's Dynamic Profiling, SecureSphere® builds a comprehensive model of legitimate application usage to automatically generate data security policies. By modeling changes to applications, usage patterns and data structures over time, the SecureSphere Web Application Firewall addresses both the complexity and constant change that are typical within a business environment.
Unparalleled Accuracy
Imperva’s unique Correlated Attack Validation technology correlates violations across security layers and over time to accurately identify the most complex attacks. Individual violations may not definitively indicate attack, but by correlating unique combinations of violations, attacks are validated beyond a doubt.
Web 2.0 and Web Services Protection SecureSphere protects dynamic Web 2.0 and Web Services by learning how these applications behave. It learns XML files, elements, attributes, schema, variables, and SOAP actions. SecureSphere will identify and block any attempt to tamper with normal Web services behavior. It will also protect against threats common to Web 2.0 applications, including SQL injection, XSS, CSRF, and many others.
Data Leak Prevention
SecureSphere inspects outbound traffic to identify potential leakage of sensitive data such as cardholder data and social security numbers. In addition to reporting on where sensitive data is used in the application, SecureSphere can optionally prevent this information from leaving the organization.
