Twitter Us!

Imperva - Database and Application Security, Reporting and Audit Solutions.Imperva SecureSphere Standard Edition - Web Application Firewall

A Proven, Trusted Web Application Firewall for Mid-Size Enterprises

 

Overview:

The Imperva SecureSphere Standard Edition (SE) Web Application Firewall provides market-leading Web application security for medium size enterprises. It combines superior application security with proven performance, ease-of-use, and automatic security updates demanded by medium enterprises with limited IT resources. The Imperva SecureSphere SE Web Application Firewall delivers enterprise-class security at an affordable price.

More organizations rely on Imperva to monitor and protect their critical Web applications than any other vendor. The Imperva SecureSphere SE Web Application Firewall provides your business with a practical and highly secure solution to ensure that your Web applications and data are safe.

SecureSphere SE Network Architecture

  • Offers enterprise-class Web Application Firewall for medium enterprises
  • Meets critical PCI compliance mandates
  • Protects confidential data from breaches and data leaks
  • Provides easy deployment with minimal configuration
  • Delivers dynamic up-to-date security protection

Features:

  • Automated Application Learning – Dynamic Profiling enables SecureSphere to automatically learn application structure and usage which augments security and streamlines configuration and management.
     
  • Flexible Deployment – Multiple configuration options, including layer 2 bridge, proxy and non-inline monitor, enable drop-in deployment with no changes to existing applications or network.
     
  • Reliable Data Leak Prevention – SecureSphere inspects outbound traffic to identify potential leakage of sensitive data such as cardholder data and social security numbers.
     
  • Accurate Application Protection – Imperva’s unique Correlated Attack Validation technology correlates violations across security layers and over time to accurately identify the most complex attacks.
     
  • Ease of Monitoring and Alerting – Real-time dashboard provides high level view of system status and security events. Alerts are easily searched, sorted, and directly linked to corresponding security rules.
     
  • Business Relevant Reporting – SecureSphere includes reporting for specific business applications and regulatory mandates, and provides an extensive list of pre-defined and customizable Web based reports.
     
  • Scalable Management – SecureSphere can be deployed as a standalone appliance and can also scale to protect a cluster of Web servers. The SecureSphere SE Management Server offers a centralized configuration, monitoring, and reporting infrastructure to manage multiple SecureSphere SE WAF appliances and applications from a single console.
     
  • Dynamic up-to-date Security protections – SecureSphere provides real-time security updates to protect against the latest threats based on feeds from the Imperva Application Defense Center (ADC), which analyzes exploit traffic from a diversity of real Web sites and conducts primary vulnerability research to identify the latest threats.
     
  • Upgradeable to Enterprise Edition – SecureSphere SE has everything you need to protect your online-applications, packaged in a solution for small IT staff. To provide maximum flexibility, the SecureSphere SE appliance may be upgraded to the Enterprise Edition as customers’ needs grow.

SecureSphere WAF SE Dashboard

Automated Protection and Easy Deployment

The SecureSphere SE Web Application Firewall uniquely addresses the key business needs of medium enterprises: reliable protection of online applications and data against all types of application attacks, ease of deployment, and automated security policy configuration. Through Imperva’s kernel-based Transparent Inspection, SecureSphere supports multiple deployment modes for varying needs without degradation of performance and with minimal latency in all modes. With Imperva’s Dynamic Profiling, SecureSphere removes the need for constant manual tuning of application monitoring and security policies, making it easy for medium enterprises to maintain security without a large support staff.

Protects Confidential Data from Breaches and Leakages

The SecureSphere SE Web Application Firewall leverages multiple inspection layers and security defenses to secure Web applications from sophisticated attacks and malicious hackers.

Accurate Application Protection
Imperva’s unique Correlated Attack Validation technology correlates violations across security layers and over time to accurately identify the most complex attacks. Individual violations may not definitively indicate attack, but by correlating unique combinations of violations, attacks are validated beyond a doubt. No other solution can match the accuracy achieved through Correlated Attack Validation.

Reliable Data Leakage Prevention
SecureSphere inspects outbound traffic to identify potential leakage of sensitive data such as cardholder data and social security numbers. In addition to reporting on where sensitive data is used in the application, SecureSphere can optionally prevent this information from leaving the organization.

Automated Application Learning
SecureSphere’s unique Dynamic Profiling technology automatically learns the structure, elements, and expected usage patterns of protected Web applications. Dynamic Profiling automatically detects and incorporates valid application changes into the application profile over time. By comparing Web requests to the profile, SecureSphere can detect unacceptable behavior and prevent malicious activity with pinpoint precision.

Dynamic Profiling overcomes the biggest drawback associated with a positive security model: the need to manually create – and update – an enormous white list that can contain hundreds or even thousands of URLs, form fields, parameters and cookies.

Automated and Accurate Protection Against:
  • Web, SSL, and XML Vulnerabilities
  • SQL Injection
  • Session Hijacking
  • Cross-Site Scripting (XSS)
  • Form Field Tampering
  • Worms
  • Buffer Overflow
  • Cookie Poisoning
  • Denial of Service
  • Brute Force Login
  • Parameter Tampering
  • Malicious Encoding
  • Directory Traversal
  • Web Server and Platform Attacks
  • Credit Card Exposure
  • Patient Data Disclosure
  • US SSN Leakage
  • Attack Reconnaissance
  • Command Injection
  • Cross Site Request Forgery (CSRF)
  • Google Hacking
  • Illegal Encoding
  • Phishing


Provides Easy Deployment with Minimal Configuration

The SecureSphere SE Web Application Firewall provides the most flexible deployment options available. In addition, Imperva’s Dynamic Profiling delivers superior security with minimal configuration or policy definition required by the SecureSphere administrator.

Flexible Deployment
Based on Imperva's kernel-based Transparent Inspection technology, SecureSphere enables high-performance, high-availability deployment into finely-tuned data centers without any impact on existing databases, applications, or network infrastructure.

  • Transparent Layer 2 Bridge - for drop-in deployment and industry-best performance
  • Reverse Proxy – for content modification, such as cookie signing and URL rewriting
  • Transparent Proxy – for fast deployment of content modification without network changes
  • Non-inline Monitor – for zero-risk monitoring and forensics

Automated Application Learning
SecureSphere's unique Dynamic Profiling technology automatically learns the structure, elements, and expected usage patterns of protected Web applications. By comparing Web requests to the profile, SecureSphere can detect unacceptable behavior and prevent malicious activity with pinpoint precision.

Delivers Dynamic Up-to-Date Security Protections

SecureSphere provides real-time security updates to protect against the latest threats based on feeds from the Imperva Application Defense Center (ADC). The ADC analyzes exploit traffic from a diversity of real Web sites, and conducts primary vulnerability research to identify the latest threats. The results of this research are updated defenses at various layers within SecureSphere, including signature updates, protocol validation policies, and correlation rules.

Ease of Monitoring and Alerting
A real-time dashboard provides a high level view of system status and security events. Alerts are easily searched, sorted, and directly linked to corresponding security rules.

SecureSphere SS Report Dashboard

Business Relevant Reporting
SecureSphere includes reporting for specific business applications and regulatory mandates, and provides a number of pre-defined and customizable Web based reports.

Scalable Management
SecureSphere can be deployed as a standalone appliance and can also scale to protect a cluster of Web servers. The SecureSphere SE Management Server offers a centralized configuration, monitoring, and reporting infrastructure to manage multiple SecureSphere WAF appliances and applications from a single console.

Features and Appliance Specifications:

Features Specifications:
Web Securiy
  • Dynamic Profile (White List security)
  • Web server & application signatures
  • HTTP RFC compliance
  • Normalization of encoded data
HTTPS/SSL Inspection
  • Passive decryption or termination
  • Optional HSM support for SSL key storage
Web Services Security
  • XML/SOAP profile enforcement
  • Web services signatures
  • XML protocol conformance
Content Modification
  • URL rewriting (obfuscation)
  • Cookie signing
  • Cookie encryption
  • Custom error messages
  • Error code handling
Platform Security
  • Known and zero-day worm security
  • Operating system intrusion signatures
Network Security
  • Stateful firewall
  • DoS prevention
Advanced Protection
  • Correlation rules incorporate all security elements (white list, black list) to detect complex, multi-stage attacks
Data Leak Prevention
  • Credit card numbers
  • PII (personally identifiable information)
  • Pattern matching
Policy/Signature Updates
  • Security updates provided weekly or immediately for critical threats
User Awareness
  • Automated Tracking of Web Application Users
Deployment Modes
  • Transparent Bridge (Layer 2)
  • Reverse Proxy and Transparent Proxy (Layer 7)
  • Non-inline sniffer
Management
  • Web User Interface (HTTP/HTTPS)
  • Command Line Interface (SSH/Console)
Administration
  • SecureSphere SE Management Server for centralized management, integrated management option
Logging/Monitoring
  • SNMP
  • Syslog
  • Email
  • Integrated graphical reporting
  • Real-time dashboard
High Availability
  • IMPVHA (Active/Active, Active/Passive)
  • Fail open interfaces (bridge mode only)
  • VRRP
  • STP and RSTP

 

Appliance Specifications:
  Imperva X2000 Imperva X1000
  X2000 X1000
Throughput 500 Mbps 100 Mbps
HTTP Transactions/Sec 22,000 8,000
Latency Sub-millisecond Sub-millisecond
Interfaces 6 x 1GbE 6 x 1GbE
Interface Types Copper Copper
Max Network Segments (2) Bridge; (5) Proxy, Non-inline (2) Bridge; (5) Proxy, Non-inline
Inline Fail Open (Bridging only) 2 bypass segments 2 bypass segments
Hard Drive 500 GB 500 GB
Memory 4 GB 2 GB
Serial Port RJ45 connector RJ45 connector
USB Port 2 2
Power Supply 250 W 250 W
AC Power 100-240V, 50-60 Hz 100-240V, 50-60 Hz
Typical Consumption 110W 80 W
Typical Heat Output 375 BTU/Hr 275 BTU/Hr
Form Factor 1U 1U
Dimensions 17 x 14 x 1.73 in 431.8 x 355.2 x 44 mm 17 x 14 x 1.73 in 431.8 x 355.2 x 44 mm
Weight 14.1 lbs (6.4 Kg) 14.1 lbs (6.4 Kg)
Operating Environment Temperature: 5° - 40° C
Relative Humidity: 20% - 90%
Storage Environment Temperature: 0° - 70° C
Relative Humidity: 20% - 90%
Safety Agency Approval CE/FCC/cTUVus/VCCI
Supported SecureSphere Products Web Application Firewall
Web Application Firewall Standard Edition (SE)
Discovery and Assessment Server
Database Vulnerability Assessments Included1 100 25

1 Database assessments only included with Discovery and Assessment Server for X2000 and X1000

View Demo:

Why have a Web Application Firewall?

 

Documentation:

PDF File
Download the Imperva SecureSphere SE Web Application Firewall Datasheet (PDF).