IMPERVA

IMPERVA

Imperva protects intellectual property

Imperva® is a leading provider of cyber security solutions that protect business critical data and applications in the cloud and on-premises. The company’s SecureSphere, CounterBreach, Incapsula and Skyfence solutions enable enterprises to protect intellectual property, business plans, trade secrets, customer and employee information, and the day-to-day data that drives your business.

Imperva is a Securite Partner

SecureSphere

Protect Your Critical Web Applications and Data
Imperva SecureSphere Web Application Firewall analyses all user access to your business-critical web applications and protects your applications and data from cyber-attacks. SecureSphere Web Application Firewall dynamically learns your applications’ “normal” behaviour and correlates this with the threat intelligence crowd-sourced from around the world and updated in real time to deliver superior protection.The industry leading SecureSphere Web Application Firewall identifies and acts upon dangers maliciously woven into innocent-looking website traffic; traffic that slips right through traditional defences. This includes blocking technical attacks such as SQL injection, cross-site scripting and remote file inclusion that exploit vulnerabilities in web applications; business logic attacks such as site scraping and comment spam; botnets and DDoS attacks; and preventing account takeover attempts in real-time, before fraudulent transactions can be performed.
Dynamic Application Profiling
SecureSphere uses patented Dynamic Application Profiling to learn all aspects of web applications, including the directories, URLs, parameters, and acceptable user inputs to detect attacks with exceptional accuracy and block only bad parties, while eliminating impact to legitimate customers. SecureSphere mitigates both technical attacks such as DDoS and SQL injection, as well as non-technical attacks such as comment spamming and site scraping.
Granular Correlation Policies – reduce false positives
SecureSphere distinguishes attacks from unusual, but legitimate, behaviour by correlating web requests across security layers and over time. SecureSphere Correlated Attack Validation capability examines multiple attributes such as HTTP protocol conformance, profile violations, signatures, special characters, and user reputation, to accurately alert on or block attacks with the lowest rate of false positives in the industry.
Flexible Deployment Options
SecureSphere can be deployed as a physical appliance, a virtual appliance, via Amazon Web Services, or as a hybrid of these. Physical appliance deployments are particularly flexible in that they allow SecureSphere to run transparently, requiring virtually no changes to the customer’s network. And granular policy controls enable superior accuracy and unequalled control to match each organisation’s specific protection requirements.
Deep Threat Intelligence
To protect against today’s well-resourced cyber-criminals, it is vital to have an advanced warning system that is aware of and protects against constantly evolving web-based attacks. Imperva ThreatRadar updates SecureSphere Web Application Firewall with real-time threat intelligence crowd-sourced from around the world and curated by Imperva Application Defence Centre. ThreatRadar provides better protection, improves WAF accuracy, and makes the security team more efficient by proactively filtering traffic from known bad sources so the security team can focus on what is really important.
The following ThreatRadar intelligence feeds are available;

  • Reputation Services: Filters traffic based upon latest, real-time reputation of source
  • Community Defence: Adds unique threat intelligence crowd-sourced from Imperva users
  • Bot Protection: Detects botnet clients and application DDoS attacks
  • Account Takeover Protection: Protects website user accounts from attack and takeover
  • Fraud Prevention: Simplifies deployment of best-in-class partner fraud prevention solutions

Virtual Patching
SecureSphere can perform “virtual patching” for your web applications via vulnerability scanner integration. Instead of leaving a web application exposed to attack for weeks or months while code is modified after discovering a vulnerability, virtual patching actively protects web applications from attacks to reduce the window of exposure, and decreases the costs of emergency fix cycles until you are able to patch them.
Customisable Reports aid compliance and forensics
SecureSphere rich graphical reporting capabilities enable customers to easily understand security status and meet regulatory compliance. SecureSphere provides both pre-defined and fully-customisable reports. This enables you to quickly assess your security status and streamline demonstration of compliance with PCI, SOX, HIPAA and FISMA and other compliance standards.
Monitoring for attack insights
Alerts can be easily searched, sorted, and directly linked to corresponding security rules. SecureSphere monitoring and reporting framework provides instant visibility into security, compliance, and content delivery concerns. A real-time dashboard provides a high-level view of system status and security events.

ResourcesData Sheet

Incapsula

Web and Perimeter Protection
Imperva Incapsula is a cloud-based application delivery service that protects websites and increases their performance, improving end user experiences and safeguarding web applications and their data from attack. Incapsula includes a web application firewall to thwart hacking attempts, DDoS mitigation to ensure attacks don’t impact online business assets, a content delivery network to optimise and accelerate web traffic, and a load balancer to maximise the potential of web environments.
Protecting Revenues and Reputation
Website downtime can cost you thousands or even millions of dollars an hour due to lost revenue and brand damage. Web attacks like SQL injection and XSS can be even more devastating, resulting in massive data breaches, customer turnover, notification costs, lawsuits, and fines. Imperva Incapsula is a cloud-based application delivery service that protects websites and increases their performance, improving end user experiences and safeguarding web applications and their data from attack. Incapsula includes a web application firewall to thwart hacking attempts, DDoS mitigation to ensure attacks don’t impact online business assets, a content delivery network to optimise and accelerate web traffic, and a load balancer to maximise the potential of web environments.
Repel Web Attacks
Incapsula prevents OWASP Top 10 threats and automated attacks, ensuring your cloud-based applications are safe and always accessible. Using advanced machine learning across millions of data points, Incapsula dynamically learns suspicious attributes—including attack strings, parameter values, and encoding—that statistically indicate attack. An advanced client classification engine detects and blocks bad bots, preventing automated threats.
Eliminate DDOS Attacks
Incapsula cloud-based security scales on demand to block even the largest DDoS attacks, allowing you to stop massive network DDoS attacks before they reach your network. Incapsula mitigates all types of DDoS attacks including those targeting Web applications, DNS servers, and direct to IP address attacks. With advanced application-layer protection, Incapsula inspects SSL traffic and spots low-data rate attacks and application exploits that can bypass other solutions. Unlike other DDoS mitigation solutions, which create negative Web viewing experiences when activated (e.g. CAPTCHAs, or delay screens), Incapsula makes use of progressive client interrogation solutions that block DDoS attacks transparently, preventing user interruption.
Improve Website Performance
Increase the performance of your website with a global content delivery network. Realise faster Web page load times, reduced bandwidth consumption, and lower server workloads without compromising the functionality of your website. Dynamic and static caching, asset optimisation, and connection optimisation all work together to improve application performance. Incapsula automatically optimises website caching settings to provide users with plug-and-play website acceleration, without the need for dedicated staff or specialised IT resources.
PCI Compliance
If your business processes credit card data, you need to meet Payment Card Industry (PCI) compliance requirements. PCI requirement 6.6 mandates that organisations install a Web application firewall or regularly review all Web applications. Incapsula, a PCI-certified cloud-based application delivery service, provides continuous protection and helps you quickly meet PCI compliance.
Enforce Multi-Factor Authentication with a single click
You will be able to implement strong authentication on any web application without integration, coding, or software changes. Single-click activation lets you safeguard administrative access, protect remote access to corporate web applications, and restrict access to particular web pages. Centrally manage and control multiple logins across several websites.
Load Balance Web Traffic
With layer-7 load balancing and fail-over, you can balance traffic across multiple web servers directly from the cloud. Load balancing allows Web applications to scale beyond the capacity of a single Web server without requiring a dedicated on-premise appliance. Incapsula also provides real-time health monitoring to maximise availability and optimise traffic utilisation.
Effortless Deployment
Avoid purchasing and deploying dedicated DDoS, Web security, or caching equipment. You can provision Incapsula cloud-based security as a service simply by changing your website’s DNS setting. This effortless deployment empowers you to jumpstart your Web application security projects while maintaining your current internet and Web hosting providers or changing your network infrastructure.
Plug and Play SIEM Integration
To help enrich your existing solutions and workflows, Incapsula has developed a ”productised connector“ for seamless integration with several leading SIEM platforms. Residing on your network, it serves as a link between the SIEM and the Incapsula API. In addition to near real-time event reporting and strong data encryption, the Incapsula productised offering features pre-made custom dashboards and reports, permitting easy viewing of incoming data from within the SIEM according to security best practices.

SecureSphere for SharePoint

Protect Your Critical Web Applications and Data
Improve SharePoint Security and Protect Sensitive Data
Microsoft SharePoint provides easy access to business-critical data through intranet, extranet, and public-facing applications. So when that information is sensitive or regulated, SharePoint security is a major concern. Imperva SecureSphere for SharePoint is designed specifically to protect your business-critical SharePoint data, and how it’s accessed—through SharePoint Web applications. As a result, SecureSphere gives you the highest level of visibility and access control for your SharePoint data, and even cuts costs by accelerating time-to-compliance.
Stops Unwanted SharePoint Access
Immediately respond to suspicious access activity by generating alerts, or in certain situations, blocking access completely. Your sensitive files are safe with SecureSphere for SharePoint, the only security technology that can stop unwanted access to files stored in SharePoint.
Stops Attacks on Web facing Apps
Defend your SharePoint Web applications from online attacks like SQL injection and cross-site scripting. SecureSphere protects SharePoint sites with the industry-leading Imperva SecureSphere Web Application Firewall technology. Rest assured that your web defences are up to date with the latest threat intelligence from the Imperva Application Defence Centre.
Streamline SharePoint Auditing
Speed up your security investigations and demonstrate strict compliance with visibility into activity occurring throughout your SharePoint environment. With SecureSphere, you can achieve detailed SharePoint auditing from the front-end Web server to the back-end SharePoint database. Summarise your audit data with flexible SharePoint reporting tools.
Speed up your security investigations and demonstrate strict compliance with visibility into activity occurring throughout your SharePoint environment. With SecureSphere, you can achieve detailed SharePoint auditing from the front-end Web server to the back-end SharePoint database. Summarise your audit data with flexible SharePoint reporting tools.
Automated Access Rights review
SharePoint compliance and security demand that your organisation re-evaluate SharePoint permissions on an ongoing basis. With SecureSphere, you can finally put a regular workflow in place for reviewing file access rights. Save time and increase accuracy by allowing data owners to make access control decisions during your review cycles. Learn more about User Rights Management for Files.
Secure Assets from Advanced Threats
You can protect your sensitive and regulated SharePoint data from sophisticated targeted attacks. SecureSphere integrates with the FireEye’s leading malware detection system to make sure malware-compromised devices can’t access SharePoint. FireEye’s Malware Protection System provides SecureSphere with a list of compromised devices, and SecureSphere stops them before they can access SharePoint and cause trouble.
Learn more about Imperva and FireEye.

Resources

Uncover Hidden Costs
Cut costs quickly by reclaiming unused storage space that is taken up by SharePoint. With SecureSphere, you can determine exactly which data is and isn’t being used and then efficiently archive or delete unused data.
Easily Monitor Privileged Users
Simplify SharePoint security by maintaining a record of all SharePoint permissions and privileged user access to your SQL database. SecureSphere ensures that your SharePoint files, lists, and application data are fully protected from insider abuse or attackers moving laterally across the organisation.