The denial of service underground and what it means to your business

What is a Web Application Firewall (WAF)

A Web Application Firewall (WAF) is a web application specific security solution designed to protect Internet applications that use HTTP to send and receive information between client and a web-server. Web Application Firewalls identify and filter potentially malicious traffic using a set of rules and/or machine-learning algorithms. It examines each and every HTTP request and makes sure that only "good" traffic is passed to the origin server, while "bad" traffic is blocked or discarded. Web Application Firewalls protect against such threats as Denial of Service (DoS) attacks, SQL injections and Cross-site scripting.

So, what are the benefits of and how does WAF works?

Key Benefits of a WAF

Protect and accelerate the performance of your web applications
The Driz Group partnered with IMPERVA Incapsula, and other major WAF and DDoS mitigation providers to protect and accelerate websites and web applications for our customers, using best in breed technology. Your application code and settings are never perfect. Make sure that the front door to your data is well protected against distributed denial of service attacks, spammers, hackers, and bad bots. We also protect your organization in the event and your application is running malicious code. Any application that runs inside the web browser, is considered a web application.

​Incapsula cloud, a global CDN routes all traffic to your website and web applications, intelligently profiling this traffic in real-time to block all types of application layer threats as well as mitigating DDoS attacks. Meanwhile, outgoing traffic is accelerated and optimized with advanced caching and optimization techniques, keeping welcome visitors speeding through, while blocking bad bots. A part of top 10 DDoS providers worldwide.

Enterprise-Grade Website Security

PCI-certified Web Application Firewall and advanced bot protection capabilities secure your website against known and emerging application-level threats. Automatically adding PCI 6.6 compliance to your company's arsenal of compliance.

High-Capacity CDN & Optimizer

Based on a globally distributed network of data centers, the application-aware CDN delivers Full Site Acceleration through intelligent caching and content optimization tools. For example, Canadian private and public companies with stringent compliance requirements that dictate keeping the data on the Canadian soil, will take advantage of Toronto-based datacenter, to fulfil those requirements.

“Always On” DDoS Attack Protection

Leveraging the CDN and a dedicated 24/7 NOC, this service secures websites against network, application and DNS targeted DDoS attacks – with zero business disruption.

How DDoS Protection Works
A small change to your DNS records ensures that all web traffic to your domain(s) is routed through the Incapsula network. Acting as a secure proxy, Incapsula masks your origin server IP and persistently filters incoming traffic—blocking DDoS traffic while legitimate requests flow through unhindered.

​The DDoS filtering process relies on a set of security rules that observe client behavior, reputation and HTTP footprint. These rules are supported by progressively-stringed security challenges. The effect is to thwart DDoS attackers while making the process invisible to legitimate visitors.

Frequently Asked Questions
​What’s the benefit of using WAF?
  • Website Security: protect your website from all OWASP threats, from scrapers and spammers to sophisticated injection and XSS attacks.
  • Website Performance: on average, websites using CDN are 50% faster and consume 40%-70% less bandwidth.
  • Analytics and Monitoring: real time analytics for website traffic, performance and threats.
  • Simple PCI Compliance: with Incapsula’s PCI-Certified Web Application Firewall.
  • DDoS Protection: WAF delivers immediate and comprehensive protection for both network (Layers 3 and 4), Application (Layer 7) and DNS-targeted DDoS attacks.
  • Cloud based: Nothing to buy, configure or maintain.
My Website has SSL. Can WAF support it?
YES. When adding an SSL site, Incapsula will lead you through a simple process of supporting SSL.
Incapsula will automatically identify when websites that support SSL traffic (HTTPS) are added to the service. In order to enable support for SSL traffic, Incapsula generates a certificate for your domain that will be hosted on its servers. During this process, you are requested to approve the creation of such certificate by Incapsula’s SSL certificate provider.
What types of threats does WAF protect against?
Enterprise-grade Web Application Firewall ensures that your website or application is always protected against any type of Application Layer hacking attempt. This includes OWASP top 10 threats such as SQL injection, cross site scripting, illegal resource access and remote file inclusion. The comprehensive DDoS Protection service secures applications and infrastructure from any type of DDoS attack, targeting any type of service.
Where are the Data Centres located?
A global network of high powered servers that includes redundancy.
Does WAF affect Google Analytics?
NO. WAF will not affect Google Analytics. Google Analytics works by inserting a piece of JavaScript into your web pages. This JavaScript interacts with the Google servers. Since WAF does not come between Google servers and your visitor, we have no effect on Google Analytics.
How does web application firewall support a better Search engine optimization "SEO"?
Because we offer a complete web application protection and acceleration solution, it includes a Content Delivery Network (CDN). It means that your website resources will be served by the datacenter closest to your visitor, hence will provide an increased web page response time. Google uses page speed as a part of its ranking algorithm and therefore having a secure and fast website will contribute to better search engine rankings, and more website visitors.
Video

Overview of Web Application Firewalls by CompTIA