Appliance Deployment Featured Article

Trustwave, a provider of information security and compliance solutions has announced major enhancements to its WebDefend Web Application Firewall or WAF” with multi-tenant and multi-linguistic capabilities.

WebDefend WAF provides protection for Web applications (such as an e-commerce site) against cyber attacks. It provides Web applications with real-time, continuous security against attacks and data loss.

The solution enables businesses to comply with industry regulations such as the Payment Card Industry Data Security Standard or “PCI (News - Alert) DSS.  

The new capabilities can protect Web applications in any language, including double byte languages such as Japanese, Korean and Chinese, company officials said. The upgrade also includes enhanced virtual patching and custom rule capabilities, including Web application scanner integration with multiple global providers.

Another feature included in the upgrade is the integration with IBM (News - Alert) AppScan and Cenzic Hailstorm that provides an easy workflow to build virtual patches based on scan results. Virtual patching protects vulnerable applications from attack, without having to wait for the next application release.

The multi-tenancy features enable multiple customers to be defined in a single appliance with secure separation that ensures customers cannot view each other’s data. This new feature enables hosting providers and Managed Security Service Providers or “MSSPs” to offer managed WAF services based on WebDefend.

Industry experts say Trustwave’s tool reflects the maturing role of security within the enterprise. It has made collaboration among security, network operations, architecture, and Web development teams easier while keeping management apprised of the progress of security initiatives with robust, scheduled report development and delivery.

“These enhancements to WebDefend will help our global customers seamlessly secure their Web applications,” said Robert J. McCullen, chairman and CEO of Trustwave, in a statement. “WebDefend’s new multi-tenant and multi-language capabilities will allow Trustwave to expand its adoption through our global network of channel partners and end users.”

WebDefend is available as a stand-alone product, or as a component of Trustwave’s 360 Application Security (News - Alert) program from SpiderLabs, the advanced security team within Trustwave. 

The Application Security program combines Secure Code Training, Application Penetration Testing, Code Review and Trustwave WebDefend with Virtual Patching into a holistic application security program.

Trustwave added WebDefend to its portfolio following its acquisition of U.S.-Israeli Web application firewall developer Breach Security in a share-swap deal in June this year.