Web Application Security

Key Capabilities

  • Dynamically learns legitimate Web application usage
  • Fortifies Web defenses with research-driven intelligence on current threats
  • Alerts or blocks requests that:
  1. Deviate from normal application and data usage
  2. Attempt to exploit known and unknown vulnerabilities
  3. Originate from malicious or fraudulent sources
  4. Indicate a sophisticated, multi-stage attack
  • Virtually patches application vulnerabilities through integration with Web application vulnerability scanners, reducing the window of exposure and impact of ad-hoc application fixes
  • Supports transparent, drop-in deployment
  • Cloud-based services simplify Web application security and prevent DDoS attacks


Web Application Security Products

SecureSphere Web Application Firewall

The market-leading SecureSphere Web Application Firewall delivers automated protection against current application attacks, including SQL injection, XSS, and CSRF. SecureSphere combines automated application learning with up-to-date protection polices and signatures from the Imperva Application Defense Center to accurately identify and stop attacks. Granular correlation rules, reputation-based security, and a powerful reporting framework complete SecureSphere's superior multi-layer protection. With multi-gigabit inline and non-inline configuration options, SecureSphere offers drop-in deployment and ultra high performance, meeting the most demanding data center requirements.

ThreatRadar Reputation Services

As an optional subscription for the SecureSphere Web Application Firewall, ThreatRadar Reputation Services protect applications against large-scale automated attacks. Reputation Services enable timely, real-world protection from known attack sources, such as malicious IP addresses and phishing URLs, and identifies source reputation and geographic location for forensics. By transmitting attack source feeds in near real time to SecureSphere WAFs, Reputation Services can quickly and accurately stop malicious users before an attack can be launched.

ThreatRadar Fraud Prevention Services

ThreatRadar Fraud Prevention Services empower organizations to rapidly provision and manage fraud detection and centrally enforce fraud security policies. As an add-on service for the SecureSphere Web Application Firewall, Fraud Prevention Services can integrate with leading Web fraud solutions to transparently identify and stop fraudulent transactions. Fraud Prevention Services also offers advanced monitoring and reporting capabilities and granular policy control, with the ability to alert of block high risk transactions, redirect users, or integrate with a SIEM, fraud management, or ticketing system.

SecureSphere Web Application Firewall and ThreatRadar are part of the SecureSphere Data Security Suite (DSS). DSS extends end-to-end protection to web applications, databases and files.

Imperva Cloud WAF

Imperva Cloud WAF, powered by Incapsula, is an easy and affordable cloud-based Web Application Firewall service that enables organizations to meet PCI compliance and protect their Web applications. Provisioned via a simple change to DNS settings, Imperva Cloud WAF does not require on premise hardware or software. Imperva’s security experts provide around-the-clock monitoring and management, so organizations without a dedicated security or IT staff can protect their applications and avoid search engine blacklisting.

Imperva Cloud DDoS Protection

Imperva Cloud DDoS Protection, powered by Incapsula, is a simple, secure service that protects critical Web applications from devastating Distributed Denial of Service (DDoS) attacks. As a cloud-based offering, this service can be deployed quickly and easily, and can scale-on-demand to inspect and stop multi-gigabit DDoS onslaughts. Imperva’s experienced security professionals provide expert assistance and policy tuning in the event of a DDoS attack, providing security engineers and business owners assurance that their Web applications will always be accessible.