What is it about?
Any service or web application can easily become a critical node in the network: subject to malicious attacks, often conducted automatically, which can lead to site disfigurements, infectious malware entries, application compromises, data leaks and even worse.
Protecting exposed web applications is therefore a necessity. Provided by industry standards, first of all PCI DSS that in its requirement 6.6 explicitly asks to protect them in production: among the mechanisms provided is the use of a Web Application Firewall (WAF).
CryptoNet Labs works with Imperva Incapsula to enable its customers to enjoy an effective and flexible, fully cloud-based WAF solution.
By intervening quickly at the DNS level, Incapsula’s technology can be functionally inserted as a reverse proxy, thus controlling requests from user browsers, search engine bots and malicious bots. By going into the HTTP protocol and also taking charge of TLS inspection, the solution is able to recognise and block attempts at SQL injection, Cross Site Scripting (XSS) and other types of threats. It can also apply appropriate protection logics in case of DDoS attacks.
The choice to rely on the cloud allows the customer to have no hardware on-premises, with consequent advantages in terms of scalability and simplification: Incapsula is responsible for maintaining the service and above all to updating it.
Working on a global scale, Incapsula can observe new attack techniques as they spread and apply appropriate protection rules to all customers.
Who can benefit from it
Companies of any size that display web applications, APIs or web services of any critical nature on the Internet and want to protect them effectively and in accordance with standards.