Select Page

Aug 4, 2022

Inhibit Application Threats (OWASP) with Hillstone WAF V3.0

by

API integrations and advancements in the application area are prominent. As such, deploying solutions that can specialize in these areas is of the utmost importance. True to our promise of delivery security that works via our comprehensive suite of security products, our portfolio continues to grow with the update of our W-series Web Application Firewall version 3.0. On the hardware side, this release brings 8 new models that can cover a plethora of customer scenarios in the application layer. On the software feature side, the Hillstone WAF v3.0 significantly improves the resilience of an enterprise’s application layer resiliency through a variety of enhancements. 

A new hard for the new landscape.

The continued growth of the world wide web is supported by an elevated usage of applications. This elevated usage of web applications is largely brought on by businesses going global, and improved API integration capabilities. The new series of WAF hardware models provide the base and foundation that can provide higher performance to support growing traffic, and provide high availability for global businesses that are operating around the clock. 

Get a jumpstart on provenance analysis.

Logs and data are the lifeblood of high functioning security scheme. WAF v3.0 now supports sending reports via FTP, which is a safe, reliable, and efficient report transmission. With reports more easily reaching the correct decision makers, it is easier to implement flexible mitigation strategy. Additionally, to being the conversation on provenance analysis and begin broaching such ideologies, troubleshooting and threat tracing capabilities have been further streamlined. Logs can be filtered through by URI and IP, making the sifting process of digging through logs more efficient.

Semi-automate blocking policies.

A hands-off and more resilient approach to security is always appreciated, and WAF v3.0 does just that with its new Captcha capability. Captcha for HTTP flood, malicious behavior, and brute force attacks are available when configuring security policy, allowing the WAF — to a certain degree – to identify and block bot traffic.

Optimization for Site Configuration.

By utilizing the Public Key Infrastructure (PKI) during site configuration, WAF simplifies the certificate configuration process when new sites are created. PKI utilizes a public/private key combination to quickly manage digital certificates. A PKI approach allows for an enterprise to choose who will provide “trust” during an authentication process between an enterprise site and a connecting users’ web browser. This process is highly scalable, dependable, and secure. The Hillstone WAF v3.0 also supports configuring VRouter for sites, which helps fulfill the need for separating sites and minimizing losses by avoiding attacks going viral in corporate networks.

Detection and Parsing of JSON/XML Format.

JSON is one of the most popular formats used for sending data between web servers, browsers, and applications. XML, on the other hand, is one of the most popular languages used to describe data. XML is oftentimes used for carrying data, whereas JSON is used to displaying data. By now possessing the ability to detect and parse JSON/XML format, the Hillstone WAF v3.0 is able to digest additional commonly used forms of data, allowing for a reduction in false positives, and an increase in prediction accuracy.

Hillstone Web Application Firewall (WAF) utilizes a dual detection engine composed of semantics analysis and signature-based detection. Together, these capabilities provide enterprises and organizations with comprehensive web application security to add a resilient layer of security so that you can go about your business operations worry-free. For more information, contact your Hillstone representative or authorized reseller.