Cyberoam, a division of Elitecore Technologies, launched a Web application firewall (WAF) feature in its UTM appliance range at RSA Conference 2012.
Woburn, Mass.-based Cyberoam said the WAF adds a layer of protection to corporate websites and Web-based applications through behavior detection.
The Web app firewall is designed for small- and medium-sized enterprises, enterprises upgrading their firewall/UTM, and existing Cyberoam UTM customers. The WAF is powered with a website flow detector that Cyberoam said can “‘self learn’ the legitimate behavior and response of Web applications,” repelling hand-crafted and open source automated attacks.
Cyberoam’s Web Application Firewall interfaces between the Web server and client, scanning data packets to mitigate any potential risk from applications. It includes features such as SSL offloading for HTTPS traffic, Positive Protection Model without Signature Tables, URL whitelisting, and comprehensive business logic protection against Web attacks such as SQL injection, cross-site scripting (XSS), cross-site request forgery (CSRF) and cookie poisoning.
-Stephanie Wright, Contributor
View all of our RSA 2012 Conference coverage.