PCI DSS Compliant web application firewalls

WAF the best answer to comply

Traditional Approach's Limits

Deny All Web Application Firewalls

How to buy ?

"Implementing Deny All Web Application Firewall was the most efficient and cost effective solution to comply with the PCI DSS Standard and to secure our growing number of web applications. Deny All WAF solution was the easiest to deploy, configure and replicate of the solutions we looked at. "

Petri Vuontela, Director, Customer systems at Aktia

Want to make your Web Applications PCI DSS-Compliant ?

Join our PCI DSS Expert for an educational webinar about WAF benefits and customer best practices.

TRANSFORM PCI DSS COMPLIANCE INTO A BUSINESS ADVANTAGE

Deny All Web Application Firewall automatically detects and immediately blocks known attacks and potential threats against web applications, offering significant cost advantages and effectiveness to comply with PCI DSS.
With a global application delivery architecture, Deny All WAF is an efficient solution to securing applications, enhancing web application performance and complying with the PCI DSS standard

Fail-Safe Security to Protect Confidential and Critical Data

Deny All Web Application Firewall delivers immediate protection against known and new web-based threats.
The product’s filtering methodology is based on an optimised reverse proxy technology, including Black List, behaviour analysis, White List and Third Party anti-virus programs.

Automated and Continuous Updates to Guarantee the 24/7 Web Application Security

All filters are updated automatically and continuously by Deny All. The dynamic auto-learning functions of the White List, generates and maintains accurate filtering rules and guarantees the highest level of security

Acceleration and Simplification Functions to Insure High Availability to Your Web Applications

By combining acceleration and simplification functions, the Deny All WAF solution offers a global application security delivery to dramatically enhance an organization’s web infrastructure environment.
To guarantee both performance and availability, Deny All WAF incorporates a powerful and comprehensive Web/SSL accelerator and allows centralised user authentication.

Flexible Security Levels for Global and Customized Security Management

The level of filtering (updates of security rules for a potential threat transaction) can be customized via the graphical user interface to adapt the Deny All WAF to meet your required security policies.

Easy to deploy, configure and replicate allowing the best quality of service for every application, in every location.

Cost effective and Lower TCO

One appliance or licence protects over 100 applications. It would not be reasonable to audit millions of lines of code and would add potential security risks from potential errors and oversight.

Deny All WAF solution addresses also the following requirements :

1.1.3, 1.3 and 1.4: isolation of DMZs;

2.2, 2.4: black list blocking with standard passwords, very complete black list (more than 1000 signatures) and hardened appliance , administrative access is encrypted;

4: SSL encryption in both directions (in and out);

5: detection of worms and optional transmission of uploaded file data to antivirus software;

6.1, 6.2, 6.3, 6.5 : comprehensive list of security features giving protection against known attacks (and also against some unknown or generic ones);

6.3.2: synchronization between environments;

6.4: logs and white list-update automation;

7: Role Based Access Control scheme for administration;

8.3, 8.3: Support for several common authentication schemes;

10: detailed logs, customizable and syslog compatible;

11: non-regression testing via a dedicated tool;

11.4: intrusion detection and behaviour analysis at HTTP level (much finer than raw TPC/IP level).

To learn more about Deny All Web Application Firewalls, please download the sProxy datasheet or register to our PCI DSS educational webinar