Riverbed SteelApp Web App Firewall
The only web application firewall solution able to scale to the largest distributed applications in global cloud platforms
Formerly Known As: Stingray Application Firewall software
Sorry, this product is no longer available, please contact us for a replacement.
Click here to jump to more pricing!
Overview:
What is a web application firewall?
Today’s web applications are under constant threat from attack. A web application firewall protects applications from security threats such as SQL injection and cross-site scripting, keeping critical data safe.
Features and benefits of SteelApp Web App Firewall
With SteelApp Web App Firewall you can:
- Proactively detect and block attacks at the application layer
- Update baseline protection rule sets regularly to meet evolving threats
- Implement a distributed architecture for high performance across all environments
It is easily deployed as a standalone web application firewall or as an optional component of Riverbed SteelApp Traffic Manager software.
Scale virtualized and cloud applications while reducing risk of a breach with SteelApp Web App Firewall
Enterprise customers can reduce their risk and resolve application security problems much faster:
- Reduced risk and exposure, shortening the window of attack from external threats
- Integrated security processes, importing vulnerability security scans for real-world protection
- Scalable security wherever you need it, in datacenters and in clouds
How it Works:
Security policies are managed by an administration server and pushed out to a farm of decider processes. Enforcer modules on web and application servers capture traffic bi-directionally and forward to available deciders for validation.
Step 1: Receive, analyze, and act on requests
At runtime, requests are analyzed and assigned a class:
- Legitimate requests are passed to the web application
- Definite attacks are repelled and data is saved to identify and trace the attacker
- Requests whose danger cannot be assessed are either rejected or passed on, depending on the local rating and installed security policy
Step 2: Analyze return traffic from your web applications
SteelApp Web App Firewall also analyzes your web applications’ responses Security-related information such as credit card numbers is filtered so it cannot escape even when the attack is successful, and gathers key behavioral information to further optimize protection.
Step 3: Logging, analysis, tuning
Logging and analyzing of user activities and attack profiles help tune rulesets to eliminate additional suspicious behavior and reduce false positives. Logging and automatic weekly and monthly reports help demonstrate compliance for legal and contractual requirements.
Product Models:
SteelApp Web App Firewall scalable clustered solution
SteelApp Web App Firewall is available in a uniquely scalable, clustered architecture for data centers and public cloud platforms. Security policies are managed by an administration server and Enforcer and decider components may be scaled as required to meet traffic requirements.
Add-on for SteelApp Traffic Manager software
SteelApp Web App Firewall is also available as an add-on module to SteelApp Traffic Manager software, providing a fully integrated application delivery controller (ADC) and web application firewall solution.
Specifications:
SteelApp Web App Firewall consists of three scalable components:
- Decider Modules apply security policy to traffic bi-directionally. Decider modules are deployed on a cluster of one or more multi-core servers.
- Enforcer Plugins are deployed on origin webservers or proxies and are configured to forward selected traffic to decider cluster.
- An administration Server manages and deploys security policies to the decider cluster and reports on security.
System Requirements: SteelApp Web App Firewall Defender module
System Requirements: SteelApp Web App Firewall Defender module |
|
|---|---|
Platform requirements |
Linux 2.6+ (x86_32 and x86_64), Solaris 10 (x86_64 and SPARC), Microsoft Windows 2008 Server x86/x64, or Microsoft Windows 2008 Server R2 x64 |
Minimum resource requirements |
1 GB disk space for program data and logging; 1 GB per core |
System Requirements: SteelApp Web App Firewall Enforcer Plugin
System Requirements: SteelApp Web App Firewall Enforcer Plugin |
|
|---|---|
Web server compatibility |
Apache 2.0 or 2.2 on Linux 2.6+ (x86_32 and x86_64), Solaris 10 (x86_64 and SPARC); J2EE servers running Java 1.2 and later and Servlet API 2.3 and later (e.g. Apache Tomcat); IIS 6 or 7; ISA 2004 or 2006; IAG Server 2007 |
Minimum resource requirements |
1 GB disk space for program data and logging, CPU utilization of webserver should not exceed 60% before deployment of Enforcer plugin |
System Requirements: SteelApp Web App Firewall Administration Server
System Requirements: SteelApp Web App Firewall Administration Server |
|
|---|---|
Platform requirements |
Linux 2.6+ (x86_32 and x86_64), Solaris 10 (x86_64 and SPARC), Microsoft Windows 2008 Server x86/x64, or Microsoft Windows 2008 Server R2 x64 |
Minimum resource requirements |
1 GB disk space for program data and logging; 2 GB memory |
Documentation:
Download the Riverbed SteelApp Product Family Brochure DataSheet (.PDF)
- Pricing and product availability subject to change without notice.