Imperva's First Network Adaptive Web Application Firewall

Imperva has unveiled the first web application firewall that eliminates the need for organizations to reconfigure their networks by adapting to existing infrastructures. The new version of Imperva's SecureSphere Web Application Firewall supports four deployment modes - bridge, router, proxy, or sniffing - to allow seamless and transparent coexistence in any IT environment. Competing web application firewalls impose complex integration challenges by offering just one or a limited number of deployment options.

For transparent integration with any IT environment, SecureSphere can be deployed in bridge, router, proxy, or network monitoring mode. This flexibility eliminates the need for organizations to adapt their infrastructure in order to accommodate a security appliance. By offering the broadest range of deployment options, SecureSphere enables customers to choose the least intrusive and most effective approach based on their existing architecture. Each deployment mode is best suited to a different set of network requirements. For example:

- Bridge: this mode is as transparent as deploying a layer 2 switch on the network, offers high performance, and requires no changes to web applications or the network

- Router: this mode is best if Network Address Translation (NAT) is required, or if web server IP addresses are in a different subnet than the rest of the network

- Proxy: provides a seamless option for replacing an existing application proxy with Imperva's Web Application Firewall

- Network monitoring (sniffing): This mode is ideal for testing purposes, since the appliance is not inline and does not impact the network

In addition to its flexible new deployment options, SecureSphere now meets the performance and high availability requirements of the most demanding web environments. For high transaction applications, SecureSphere is available on the G16 appliance platform which provides 2Gbps of throughput. SecureSphere also supports advanced failover using VRRP for layer 3 and above deployments, and the proprietary Imperva High Availability (IMPVHA) protocol for layer 2 applications.

Finally, to meet the requirements of carrier networks and large scale data centers, Imperva and Crossbeam have partnered to offer the SecureSphere web application firewall as a blade on the Crossbeam X-series Unified Threat Management platform. The availability of SecureSphere on the Crossbeam platform reduces hardware deployments and centralizes application protection with other security services such as anti-virus and VPN.

write your comments about the article :: 2006 Networking News :: home page