A10 adds security upgrades to Thunder ADCs
Enhancements include SSL intercept visibility, new encryption features, and WAF upgrades
A10 Networks today announced "significant" security upgrades for its A10 Thunder application delivery controller (ADC) portfolio.
The new enhancements include SSL intercept visibility, new encryption features, web application firewall (WAF) upgrades, and broader application access management features, the vendor said.
A10 said that such features needed to be bundled into ADCs, given the rising number of security threats and the fact that ADCs sit at critical points in the network.
"Because ADCs sit at the critical ingress to most networks, it is a natural place to locate advanced security capabilities so threats can be stopped or mitigated before they can enter the network," said Jason Matlof, A10's vice president of worldwide marketing.
"A10 has been adding security features such as DDoS mitigation, WAF, and SSL offload functionality to its ADC portfolio for years, allowing security functions to be delivered with the very high performance characteristic of our ADCs. Today's announcement further strengthens our enterprise security portfolio to include some of the most advanced security features, allowing our customers to keep ahead of evolving security threats."
The SSL intercept visibility comes with a selective bypass for user confidentiality, powered by Webroot URL classification. A10 said that this was the fir URL bypass for SLL to feature in an ADC product.
Meanwhile, the encryption capabilities are built on Perfect Forward Secrecy (PFS) and Elliptic Curve Diffie-Hellman (ECDH) cryptography, A10 said. The vendor explained that the strong new ciphers would impede the decryption of data after the fact, with ephermeral keys generating and then discarding keys after each session.
The WAF enhancements include new features such as XML and JSON protection, open redirect attack mitigation, granular HTTP protocol compliance rules, and integration of WAF security policies with aFleX scripting policies, the vendor said.
These new features will be available in ACOS 4.0 in the second half of 2014 and will be included at no additional charge through A10's ‘All Inclusive Licensing' pricing model.