Scribd
Upload
63 views3 pages

Imperva ApplicationSecurity Datasheet 20200805

Imperva Application Security provides a defense-in-depth model to protect applications from security threats while ensuring high availability and an optimal user experience. It utilizes artificial intelligence to uncover incidents, secures against OWASP top 10 threats across cloud and on-premises with a web application firewall, and mitigates potentially devastating DDoS attacks before reaching applications.

Uploaded by

Yeruel Birku
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
63 views3 pages

Imperva ApplicationSecurity Datasheet 20200805

Imperva Application Security provides a defense-in-depth model to protect applications from security threats while ensuring high availability and an optimal user experience. It utilizes artificial intelligence to uncover incidents, secures against OWASP top 10 threats across cloud and on-premises with a web application firewall, and mitigates potentially devastating DDoS attacks before reaching applications.

Uploaded by

Yeruel Birku
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

DATASHEET

Imperva Application
Security

Keep business up and enemies down KEY CAPABILITIES:

Applications have become mission-critical for organizations looking to drive rapid Uncover and act upon key
critical security incidents by
growth. They help facilitate customer reach around the world and can act as the
utilizing artificial intelligence
primary business model. These applications require protection from security threats, and machine learning.
yet end-users demand high availability and an uninterrupted experience, which can
Secure against OWASP Top 10
make for a tough balancing act. To meet this need, Imperva Application Security
threats across both the cloud and
empowers organizations to protect their applications and mitigate risk while providing on-premises WAF deployments.
an optimal user experience. Imperva also makes vendor consolidation and management
simplicity a reality, with application security components offered as part of an integrated Mitigate potentially devastating
DDoS attacks before they even
solution set.
reach your application.

Accelerate web content delivery

Secure your critical applications


ensuring users consistently have
an optimal user experience.

Support faster application release


Imperva deploys an integrated defense-in-depth model which provides a layered
cycles while ensuring application
approach to enforcing security from the application to the end user. Through Imperva protection during runtime.
Runtime Application Self-Protection (RASP), a lightweight agent is incorporated during
Ensure high availability even when
the software development cycle. RASP learns the unique behavior of the application
under attack from malicious bots
and fortifies a security defense model around inherent security vulnerabilities, reducing and DDoS.
pressure on development teams to immediately fix critical vulnerabilities before releasing
to production, while ensuring immediate and effective protection against malicious
exploits. A Leader in the Gartner Magic Quadrant for Web Application Firewalls
(WAF), Imperva provides WAF solutions (cloud-based Cloud WAF and on-premises or
virtual appliance WAF Gateway) to defend against all OWASP Top 10 threats including
SQL injection, cross-site scripting, illegal resource access, and remote file inclusion.
Inspection and enforcement of user traffic occurs across Imperva’s global network of
PoPs, each also a DDoS scrubbing center. Policies and signatures are kept up-to-date
for your WAF and API Security based on live, crowdsourced intelligence and from
security experts at Imperva Research Labs.

Imperva Application Security - Datasheet imperva.com


Imperva Security Defense-in-Depth Architecture

Security Analytics

Website Security
APIs Data

DDoS Protection
APPs APIs Data

Load Balancing

APIs Data

CDN & Optimizer

Edge Network APPs/APIs Data

App Security + Delivery On Premise WAF Built-in Security Data Security


RASP + API Security and Compliance
Cloud based WAF, DDoS, Industry leading WAF
Bot Mitigation, Load Balancer, Securing run time Relational DB, Big Data,
Analytics application protection Mainframe, Insider Threat,
and East/West traffic GDPR, SOX, PCI

Figure 1: Imperva Security Defence In Depth Architecture

Act on critical insights


With today’s complex and ever-changing threat landscape, it’s more important than
ever to gain visibility across your data and applications. An explosion of security alerts
can keep organizations from discovering critical attacks that actually pose an imminent
threat. Attack Analytics, a key part of Imperva Application Security, combats alert
fatigue by distilling millions of security alerts into a prioritized set of security insights.
It gives recommended actions to improve your security posture, helping you recognize
your cyber risk and help bring it down.

Avoid disruption to your business


Cybercriminals often wage disruption campaigns against high-profile targets like bank,
retail or political organizations. They are driven by revenge, blackmail or political activism
and utilize vast botnet networks to wage devastating attacks. Organizations without
proper protection from malicious bots and Distributed Detail of Service (DDoS) attack
are exposed to the risk of users experiencing slowed or denied access to their
websites. Constant attack campaigns can drive users from returning, fulfilling the
goal of the attacker. Imperva Application Security provides powerful DDoS Protection
and Advanced Bot Protection to eliminate attacks long before malicious traffic
even has a chance to reach a customer’s website. Multiple DDoS protection services
are available, with always-on protection for websites, DNS servers, and individual
IPs, and always-on or on-demand protection for networks. With near-zero latency
and backed by a 3-second service level agreement, DDoS traffic is mitigated without
disruptionto legitimate traffic. And with Imperva Advanced Bot Protection, fingerprinting
and client classification categorizes whether traffic is coming from a human, a good
bot or a bad bot. It does so quickly and accurately, with a very low false positive rate,
protecting against account takeover and all business logic attacks on websites, APIs and
mobile apps.

Imperva Application Security - Datasheet imperva.com


Ensure a seamless user experience
IMPERVA APPLICATION
Organizations that depend upon return users often require designing their website SECURITY
infrastructure so that web content may be quickly delivered to meet global user demand
at anytime. Imperva Application Delivery with its Content Delivery Network (CDN) The solution safeguards
applications on-premises and
optimizes website delivery by providing content closest to the end-user. With a global
in the cloud by:
network of PoPs, Imperva is able to provide quick and reliable access to web content.
An application-aware CDN dynamically profiles a website, identifying all cacheable Providing actionable security
content (dynamic and static), and provides dynamic content acceleration. Profiling and insights

frequency analysis ensure the most frequently accessed resources are detected and
Providing WAF protection
served directly from memory, allowing website optimization, improved performance, and
lowered bandwidth costs. Protecting against

To further help organizations deploy applications that are highly scalable, Load DDoS attacks
Balancing in the cloud replaces costly appliances. When high availability and
Mitigating botnet attacks
redundancy in the event of a web server failure is crucial, Imperva is able to prevent any
impact of service to end-users. Imperva Load Balancer supports a single data center Blocking cyber-attacks that
with multiple servers, site failover, and global server load balancing. Real-time health target APIs
monitoring and notifications ensure traffic is always routed to a viable web server.
Enabling RASP protection

Consolidated protection Ensuring optimal

Content delivery
FlexProtect is a flexible and comprehensive approach to securing applications. A single
license offers you the ability to deploy Imperva Application Security how and when Learn more about Imperva
you need it. FlexProtect for Applications allows customers the flexibility to adapt their Application Security at
security without regard to infrastructure. You’re protected regardless of the number, +1.866.926.4678 or online at
imperva.com
location or type of devices or services used. FlexProtect helps you protect apps
wherever you deploy them - in the cloud, or on-premises or as a hybrid model.

Imperva is an
analyst-recognized,
cybersecurity leader
championing the
fight to secure data
and applications
wherever they reside.

Imperva Application Security - Datasheet imperva.com


Copyright © 2020 Imperva. All rights reserved +1.866.926.4678

You might also like