Home / / A10 adds security upgrades to Thunder ADCs

A10 adds security upgrades to Thunder ADCs

Enhancements include SSL intercept visibility, new encryption features, and WAF upgrades

A10 adds security upgrades to Thunder ADCs
The new features will be available in ACOS 4.0 in the second half of 2014

A10 Networks today announced "significant" security upgrades for its A10 Thunder application delivery controller (ADC) portfolio.

The new enhancements include SSL intercept visibility, new encryption features, web application firewall (WAF) upgrades, and broader application access management features, the vendor said.

A10 said that such features needed to be bundled into ADCs, given the rising number of security threats and the fact that ADCs sit at critical points in the network.

"Because ADCs sit at the critical ingress to most networks, it is a natural place to locate advanced security capabilities so threats can be stopped or mitigated before they can enter the network," said Jason Matlof, A10's vice president of worldwide marketing.

"A10 has been adding security features such as DDoS mitigation, WAF, and SSL offload functionality to its ADC portfolio for years, allowing security functions to be delivered with the very high performance characteristic of our ADCs. Today's announcement further strengthens our enterprise security portfolio to include some of the most advanced security features, allowing our customers to keep ahead of evolving security threats."

The SSL intercept visibility comes with a selective bypass for user confidentiality, powered by Webroot URL classification. A10 said that this was the fir URL bypass for SLL to feature in an ADC product.

Meanwhile, the encryption capabilities are built on Perfect Forward Secrecy (PFS) and Elliptic Curve Diffie-Hellman (ECDH) cryptography, A10 said. The vendor explained that the strong new ciphers would impede the decryption of data after the fact, with ephermeral keys generating and then discarding keys after each session.

The WAF enhancements include new features such as XML and JSON protection, open redirect attack mitigation, granular HTTP protocol compliance rules, and integration of WAF security policies with aFleX scripting policies, the vendor said.

These new features will be available in ACOS 4.0 in the second half of 2014 and will be included at no additional charge through A10's ‘All Inclusive Licensing' pricing model.

Follow us to get the most comprehensive IT infrastructure news delivered fresh from our social media accounts on Facebook, Twitter, Youtube, and listen to our Weekly Podcast. Click here to sign up for our weekly newsletter on curated technology news in the Middle East and Worldwide.

REGISTER NOW | Webinar Event | Security you can bank on – Safeguarding the Middle East’s financial sector

Presented in partnership with security and network specialist Cybereason, the second in the three part webinar series will bring together a panel of experts to discuss how banks and financial institutions are evolving their service offering while simultaneously staying one step ahead of the cyber criminals who seek to bring their operations crashing to the ground.