WebDefend Key Features

Dynamic Application Profiling

The patent-pending Adaption profiling system automatically builds a customised, positive security model for each protected application to understand its acceptable behaviour. The system maps all levels of application behaviour, so there is no need for detailed knowledge or secure coding. As the application is updated, WebDefend automatically detects the changes, learns them, and adjusts the profile.

Inbound and Outbound Traffic Analysis

Only WebDefend offers inbound and outbound traffic analysis through the patent-pending, bi-directional ExitControl traffic analysis engine. ExitControl inspects both incoming and outgoing traffic to block hacker-informative error messages and prevent application defacement and data theft. Pre-defined and customisable BreachMarks within the ExitControl engine represent patterns that identify a specific type of information, such as credit card or Social Security numbers. Organisations can set BreachMark policies to alert on and prevent the loss of matching data.

Application Security Defect Detection

WebDefend uniquely identifies and reports on application security defects caused by insecure coding techniques. These defects, such as missing images or hyperlinks and improper request handling, negatively impact the user experience by preventing application access or disabling the web server. Each protected application is passively monitored for anomalies in its responses. If necessary, corresponding inbound requests are analysed to determine underlying causes. By assessing an entire application in its actual environment, WebDefend pinpoints defects that would otherwise go undetected during a code review or vulnerability scan.







Out-of-the-Box PCI Compliance

WebDefend includes pre-packaged rule sets specifically designed for organizations working to comply with the Payment Card Industry Data Security Standard (PCI DSS). These rules ensure the proper configuration of security mechanisms for attack prevention as well as logging of all payment card usage for compliance. PCI-specific reports provide an immediate view of the system’s overall level of compliance as well as details of sensitive information use for audit purposes.

Full Monitoring and Blocking Capabilities

A full suite of monitoring and blocking capabilities allow organizations to customize WebDefend’s response to threats. A simulation mode facilitates deployment by indicating what WebDefend would prevent, without requiring full blocking functionality to be enabled. WebDefend’s blocking capabilities range from logging out malicious users, integrating with popular web servers for attack blocking and network firewalls for IP blocking, and TCP resets.

SSL Attack Detection

WebDefend replicates and decrypts SSL traffic streams without terminating the original encrypted session. Immediately after decryption, WebDefend inspects the traffic entering and leaving the web environment, providing full visibility and attack detection capability without compromising performance.

Intuitive Management Console

The easy-to-use WebDefend Management Console provides a single point of sensor configuration and management. Organizations can immediately use the console, without any initial training, to gain full visibility into their web applications’ architectures and security. The instructive console helps organizations understand the context in which events are generated and remediate problems quickly. For every event detected, a detailed description pinpoints the vulnerability, offers insight into its meaning, and assists with its resolution. The console offers multiple event views, allowing organizations to examine entire transactions and see the error messages presented to users. Events can also be filtered, so only exceptions are shown. Powerful reporting tools help to communicate web application security defects to development, meet compliance requirements, and track the effectiveness of WebDefend policies.

back

“Since Brookcourt came into the picture, we have experienced many benefits. Most notably, they provide us with a broader vision of options for technology and solution to meet the needs of our campus environment. The team from Brookcourt is helpful, professional and competitively priced. Simply stated, they’ve been brilliant!” Colchester Institute - Elearning Network Manager                      ”Our business has grown dramatically and Brookcourt Solutions has been able to scale their support accordingly. We have found the team to be extremely responsive and dependable, and their professionalism and knowledge has made them a true business partner." The Hospital Group - IT Support Manager                      "Since Brookcourt came on board, they have provided proactive account management and have proved willing to offer advice for the development of the service provided by Pace's IS function." Pace Petroleum - Manager, Information Services
© Copyright 2005. Brookcourt Solutions Ltd 

Home | About us | Solutions | Cool Tech | Services | News | Contact us