Protecting enterprise web applications

Next-generation operating system for Fortinet web application firewall solutions developed to help inprotect web applications from growing complexity of malicious application layer attacks

Tags: Fortinet Incorporation
  • E-Mail
Protecting enterprise web applications Automated malicious scanning and attacks means that security administrators need to react quickly to threats, says Bashaireh.
By  Mark Sutton Published  June 13, 2013

Protecting against application layer threats is a growing task for web security professionals. With the vulnerabilities and exploits constantly shifting, keeping defences current is hard work. Despite the efforts of organisations such as the Open Web Applications Security Project (OWASP), which tracks threats, risks such as SQL injection attacks, broken authentication and session management, and security misconfiguration all add to the loads of security professionals.

Enterprises now however, have an additional layer of protection against web application threats, with the launch of the next-generation operating system (OS) for its FortiWeb Web Application Firewalls (WAF) product family.

According to Bashar Bashaireh, regional director at Fortinet Middle East, the new OS will provide important security advancements to protect against increasingly malicious application layer attacks.

The new FortiWeb 5 OS, which is backward compatible with the entire FortiWeb family, features critical security advancements that include the ability to accurately identify the origin of Web application traffic to proactively distinguish between legitimate and malicious sources.

Bashaireh explained that the FortiWeb solutions provides the ability to distinguish between legitimate known search engine requests, scanners, crawlers and other threshold based tools. This expands the bot identification and analysis coverage recently introduced with the FortiGuard IP Reputation service, which monitors IPs that are compromised or behaving abnormally.

In conjunction with the FortiWeb 5 rollout, Fortinet is also introducing three new Web application firewall appliances: the FortiWeb-3000D, FortiWeb-3000DFsx and FortiWeb-4000D, which are designed for large enterprises, service providers and large data centres that require high performance Web application security. The FortiWeb-3000D and FortiWeb-3000DFsx support up to 1.5 Gbps of throughput while the FortiWeb-4000D supports up 4 Gbps. The new appliances are 50 to 100 percent faster than their predecessors and provide robust protection against the Open Web Application Security Project (OWASP) Top 10 risks and aid in PCI DSS 6.6 compliance.

Addressing Web Application Pain Points

“Because today’s Web applications are being accessed and/or targeted by automated scripting tools, scans, search engines and unknown or malicious sources, security administrators need to quickly and easily identify those sources and traffic types,” Bashaireh said. “This is critical to distinguish good and bad traffic types and sources. FortiWeb technology now provides a graphical dashboard to easily spot and track bot traffic trends.

“Moreover, the need to protect against application layer DoS attacks is increasingly important given the precipitous rise in attacks on application resources. This is in stark contrast to hackers’ previous focus on disrupting network bandwidth. FortiWeb 5 expands the previously released challenge response mechanism that distinguishes legitimate Web application requests from automated DoS tools to support in multiple different policies, providing better flexibility and granularity,” he added.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code