logotype
Kwaf
KWAF PDF Print E-mail

KWAF Logo

Kleis Web Application Firewall(KWAF®) is an application firewall designed to protect applications and web services. The product combines ease of management and deployment flexibility at a high efficiency in application security attacks.

In particular KWAF® is effective in the defense against application attacks is through standard channels or through encrypted channels. With KWAF® can protect:

  • Web Application
  • Web infrastructure (as Web Server, Application Server, Connector, Transaction Server)
  • Back-End resource (as DataBase Server, Authentication Server, LDAP Server)

KWAF® is an integral part of the suite SMASH®, market leader in fraud prevention in financial.

KWAF®: features

Clever Engine

KWAF® protects applications and web services not only against known vulnerabilities, but also from unknown attacks. Thanks to its "clever" engine, an engine capable of recognizing the correct functioning of applications and able to learn their behaviors, KWAF® stops attacks newborn or unknown. In a word: protection 'zero-day'

Deploy

KWAF® can be deployed as an Virtual Appliance or as Software package. In the first case the product is already ready and this is the easiest choice for rapid and flexible introduction of the solution. The use of the product in the software distribution was instead often needs a strong integration in complex pre-existing reasons for architectural and / or service is not expedient to modify. Obviously they can coexist within the same domain management heterogeneous installations.The solution KWAF® can also be accessed in a cloud and does not affect the characteristics of high reliability of service protected native.

Administration Interface

KWAF® is simplicity and directness. It allows, in addition to the management of various security policies, including:

  • To check in real-time control of traffic carried on different applications, thus having a constant overview on the various protected resources;
  • To prepare an effective reporting in order to detect any anomalies or to establish compliance with certain safety standards
  • To send alerts in case of anomalies (for example if an application is under attack).

High Security and Low Cost of Ownership

KWAF® offers complete protection and targeted on the basis of the structure of the various applications without having to invest much time for setup and customization of the control rules for each protected application.
Below is a partial list of the families of attacks run by KWAF®:

  • Header Splitting
  • Cache Poisoning
  • Buffer Overflow
  • NULL Overflow
  • Parameter Manipulation
  • SQL Injection
  • Command Injection
  • Shell Code Injection
  • File Injection
  • Cookie Injection
  • Cookie Poisoning
  • Session Injection
  • Cross Site Scripting
  • Malicious Script Injection
  • Path Traversal
  • Brute Force Login
  • Request Storming
  • Site Listing
  • Site Crawling
  • Directory Listing
  • Source Code Exposure
  • Reverse Proxy Forcing
  • Denial of Service
  • Phishing

The benefits and the advantages of using KWAF®

KWAF®: is for all those companies that have:

  • To prevent the loss and / or undue capture of  confidential data;
  • To guarantee the safety and reliability of service to the End User;
  • To guarantee service delivery (eg, protecting it from Denial of Service);
  • To move to a solution for securing web applications with the least impact possible on the infrastructure and applications to protect
  • To reduce operating costs and maintenance of applications:
    • Managing controls in a way transparent to the applications under protection, thus reducing the cost of application development that would be required to implement security controls and / or adapt to new emerging standards;
    • Increasing the level of safety even of new applications, even if built according to best practices for developing secure, are not immune from possible attacks: just think of the attacks based on pattern / signature that are rapidly evolving (Cross Site Scripting SQL Injection, etc. ...) or rather the dangers derived from human development (often, who develops the application is the same person then runs the tests, rendering them much less significant)
    • Managing the safety rules in a centralized, flexible and above all administrable without actually knowing the implementation details of each protected application (often the head of security does not coincide with the manager of software development, including requirements and good practice of the separation of roles);
  • To quickly update the security rules in response to the discovery of new vulnerabilities or before the advent of new standards, without having to modify applications and / or create inefficiencies;
  • To enable security managers or application to demonstrate compliance with industry regulations or legislative branch:
    • Having reporting, pre-packaged but customizable, targeted to demonstrate compliance with certain requirements.
    		•