Symantec Web Application Firewall (WAF) and Reverse Proxy

Get stronger protection against modern, sophisticated attacks.

Web and mobile applications are being used for nearly every aspect of business operation and are becoming the trusted environments for mission-critical business applications. Consequently, web server infrastructures are facing an increasing number of complex threats that Intrusion Prevention Systems, Load Balancers and Next-Generation Firewalls can no longer address.

Fortunately, Symantec Web Application Firewall (WAF) and Reverse Proxy combine can meet these new challenges head-on providing robust security with next-generation content nature detection engines, high performance content delivery, and operational simplicity. Built on a secure proxy architecture, our solutions allow organizations to secure and accelerate their web mobile applications to end-users, customers, employees, and vendors.

Unleash the power of our content nature engines.

Symantec Web Application Firewall (WAF) proprietary Content Nature Detection Engines understand the context of the content, representing a fundamental shift in attack detection technology that improves the overall accuracy and reliability of attack identification. When a request comes in, it is parsed and broken down to parts, then analyzed against these engines similar to how a compiler parses and analyzes code. If the system believes that a request has something that can detonate on the target it can then be either monitored or blocked according to the configuration of the policy.

The Content Nature Detection Engines can be used to combat many of today’s web application attacks including code injection, HTML injection, directory traversal, command injection, JSON validation, SQL injection and cross-site scripting.

• HTML5 & JavaScript parser / dictionary
  
• Shells’ command grammar and interpreter
  
• Compiler-like SQL parsing & analysis

Choose a proxy firewall designed for zero-day protection.

Symantec WAF approaches Layer 7 defense in a new way addressing the short-comings inherent in traditional signature-based approach in terms of security protections and operational improvements. Symantec WAF is designed to block new unknown attacks by default conducting advanced threat analysis on both inbound and outbound content to detect and protect infrastructure from attacks. Protection is provided through both signature-based engines capable of blocking known attack patterns and advanced signatureless engines designed to uncover unknown and zero-day attacks in the web traffic. Symantec Web Application Firewall uses the most advanced content nature detection engines to detect obfuscation and prevent new attacks.

• Increased zero-day protection
  
• Does not rely solely on signatures
  
• Lower false positives

Get better protection and performance with lower operational cost.

Set it and forget it. Unlike signatures and rules-based WAFs where the signatures must be updated weekly or even daily, the content nature engines are only updated when application languge specifications of the languages are updated (i.e. HTML, Javascript, SQL, etc…). There is significantly less dependency between the application groups and security teams as engines understand the underlying languages. Even when applications change, the security model and configuration remains the same and like most Web Application Firewalls, it’ll perform faster and better when it is not required to manage an ever-growing number of signatures. But the performance and efficiency advantages don’t stop there. Symantec WAF also delivers:

• A secure, object-based operating system specifically designed to handle web content and rich media
  
• Patented proxy caching technology with an optimized TCP stack for efficient web content acceleration
• Rich media support includes stream splitting and video on-demand caching
• Bandwidth controls on all proxy services
• SSL services provide hardware-accelerated key negotiation, encryption, and decryption support