Kemp introduces load balancers with native WAF

Web application firewall (WAF) services will now be natively integrated in the KEMP Technologies LoadMaster Operating System (LMOS) for load balancers. This will enable secure deployment of web applications, preventing Layer-7 attacks while maintaining core load balancing services and ensuring superior application delivery performance, high availability and scalability.

  • 9 years ago Posted in

According to Trustwave’s State of Security report, 96 percent of web applications scanned by Trustwave in 2013 harboured one or more serious vulnerability. The widely deployed WAF engine ModSecurity, has been optimised and integrated with KEMP’s kernel-based ADC (Application Delivery Control) engine. It directly augments LoadMaster’s existing security features to create a layered defence for web apps and enables safe, compliant and productive use of web application resources.


KEMP worked closely with Trustwave’s engineering team, custodians of ModSecurity, to extend the core LoadMaster ADC technology to be both a flexible L7 application centric delivery engine and a dynamic WAF. KEMP’s integrated L7 WAF platform is based on an industry-leading rules engine that provides real-time coverage for all published application threats, including the OWASP Top Ten, as well as critical baseline protections. Importantly, it also allows customers to reuse their existing rules based on ModSecurity in a centralised KEMP ADC appliance.


“Enterprises that focus their WAF efforts on compliance or protecting public-facing web applications, such as e-commerce and web retail, cannot afford to overlook equally important custom applications that interoperate end-to-end,” said Peter Melerud, co-founder and EVP, Product Management, KEMP Technologies. “KEMP’s ADCs dynamically deliver application high availability that now, with natively integrated WAF from KEMP, also provides the most robust threat protection.”


With WAF-ADC integration announced today, KEMP enhances its existing security features available on LoadMaster platforms. This includes edge security gateway functionality to protect published workloads including reverse proxy, SSO, pre-authentication and SMTP domain filtering, dual-factor authentication, IPS, and SSL bridging for secured traffic flows. KEMP’s threat protection also includes attack categories such as IP reputation, botnet attack detection, web-based malware detection, webshell/backdoor detection, HTTP denial of service (DoS) attack detection, and anti-virus scanning of file attachments.
 

The first transoceanic cable to achieve 1/2 Petabit per second capacity, and also the first to...
10-year contract forms part of East Sussex Council’s new procurement Framework initiative serving...
CommScope High Density R-PHY Shelf to support DAA and virtualization across global broadband...
Djibouti Telecom is leveraging Ciena’s GeoMesh Extreme solution to upgrade its DARE1 (Djibouti...
New dual band stabilisation technique cancels the problem of temperature fluctuations to allow long...
Aryaka Networks has introduced its latest Services Point of Presence (PoP) in Dublin, Ireland,...
The service is the first of its kind to be trialled across the Atlantic on a live network and will...
SpaceX will locate Starlink ground stations within Google data center properties, providing...