KEMP Technologies announced today that its Application Firewall Pack (AFP) for the LoadMaster line is now generally available, enabling secure, scalable, and always-on workload delivery in one fully integrated application delivery and load-balancing product.
KEMP's LoadMaster Load Balancer ADC natively provides a range of integrated security capabilities, including edge security, Layer 7 IPS/IDS, DDOS mitigation, application publishing, client authentication and single sign-on - all included as standard features on KEMP's entire range of ADCs. With the release of KEMP's "Application Firewall Pack" (AFP), KEMP is now delivering comprehensive Web application firewall (WAF) protection.
Based on one of the world's most widely deployed open source Web application firewall engine, ModSecurity, and augmented by threat intelligence, research and security rule sets* from information security provider Trustwave, KEMP's AFP capabilities provide real-time threat protection for packaged and custom published applications, data leak prevention (DLP), mitigation of the OWASP Top Ten most common vulnerabilities, and support for PCI-DSS compliance.
By enabling customers to centralise their existing ModSecurity rules that may be distributed across multiple Web application servers, AFP ensures consistency is established by removing the potential for configuration shift across distributed instances and simplifies administration. Additionally, removing the resource-intensive responsibility of inspecting inbound requests and outbound payloads for violation of application firewall policies from individual application servers has significant performance benefits, since AFP, co-located with LoadMaster, can perform these tasks more efficiently.
Since KEMP's LoadMaster ADC is typically placed in close proximity to deployed application workload servers and is innately required to offload and accelerate SSL decryption and re-encryption of traffic flows sent over SSL/TLS for intelligent processing, it's optimally positioned to detect threats at both points of ingress and egress, even when secured communication methods are in use.
Today's cyber security attacks are more sophisticated than ever, constantly changing and focused on application vulnerabilities. According to recent statistics from the National Vulnerability Database, 75% of all reported vulnerabilities in 2013 were targeted at applications with an average of 13 new vulnerabilities being discovered on a daily basis. Additionally, based on Trustwave's 2014 Global Security Report+, 96% of all applications scanned in the same year harboured at least one or more serious vulnerability. With this in mind, a multi-layer security approach is required for organisations that take data and application security seriously and attention must be given to application specific vectors.
"KEMP Technologies continues to execute on its application delivery vision of which security is a core component," said Peter Melerud, CMO, KEMP Technologies. "We're committed to providing unmatched competitive value in our offerings and enabling customers with the product features needed to easily deploy, scale and secure the applications that support their business."
* https://www3.trustwave.com/modsecurity-rules-support.php
https://www2.trustwave.com/GSR2014.html?utm_source=blog&utm_medium=web&utm_campaign=GSR2014
Share