Pundit - Guard the Application Layer

By Eric Knorr

PAGE 2

Once you’ve plugged the holes as best you can, it’s time to deploy a Web application firewall. These work in an interesting way: by learning what well-formed traffic to and from an application looks like and identifying the unexpected. To do this, Web app firewalls must inspect packets at a deeper level than do ordinary firewalls. Check Point is the best-known brand in this area, but the other vendors are relatively obscure: KaVaDo, NetContinuum, Sanctum and Teros. Some of these Web app firewalls are available as software, others as appliances, others as either. But don’t mistake this for plug and play, even in the case of the appliances. As with intrusion detection, you need to calibrate Web application firewalls carefully to reduce false positives without letting sneaky attacks through.

In the end, I wish such elaborate defense measures were unnecessary. Thanks to spam and ever more sophisticated attacks, it seems inevitable that the public Internet will devolve into overlapping virtual private networks. Meanwhile, we have no choice but to turn to increasingly clever gadgets to stave off the barbarian hoards.

« previous page | 1 | 2

Comments

More from IT Drilldown « Back to Applications

Articles

Two Approaches to NFC Battle for French Hearts and Mobiles

FCC: Internet Program for Deaf Cheated Out of Millions

Five Reasons the Google Chrome OS Will Flop

Techies Gather for a Lunch to Save the World

Why Chrome OS Will Fail -- Big Time

Microsoft Windows Chief Decries Standards Grandstanding

BMC Takes Service Desk to the Cloud Via Salesforce.Com

FAA Glitch Shines Spotlight on Troubled Telco Project

Enterprise Newsletter

Applications MarketSpace

Practical Approaches for Securing Web Applications

Enterprises understand the importance of securing web applications to protect critical corporate and customer data. What many don't understand, is how to implement a robust process for integrating security and risk management throughout the web application software development lifecycle. Learn more »

Smart techniques for application security: whitebox + blackbox security testing.

An Executive's Guide to Web Application Security

Since so many Web sites contain vulnerabilities, hackers can leverage a relatively simple exploit to gain access to a wealth of sensitive information, such as credit card data, social security numbers and health records. It's more important than ever to examine your Web application security, assess your vulnerability and take action to protect your business. Learn more »

Web Application Vulnerabilities

Security managers may work for midsize or large organizations; they may operate from anywhere on the globe. But inevitably, they share a common goal: to better manage the risks associated with their business infrastructure. Increasingly, Web application security plays a significant role in achieving that goal. Learn more »

Using ERP To Gain Competitive Advantage in a Tough Economy

For midsize enterprises, now is the perfect time to invest in a significant IT expansion - despite the economic climate. Learn more »

Why BI is Ripe For Businesses of Any Size

Oracle's range of offerings to mid-size and emerging companies reflects its vision that BI and EPM solutions can be embraced by companies of all sizes. Learn more »

Oracle Accelerate

Ovum has been following Oracle's Accelerate program over the last couple of years because they thought it is a smart strategy for penetrating the upper mid-market. Learn more »

The New Age of ERP

Not only can small and mid-sized companies reap the renowned ERP benefits of greater agility, increased business visibility and measurable ROI. Learn more »