WEB Application Firewall
Chinese name: Tianqing Web Applicationsuretygateway (Internet or between networks)
English name: Web Application Firewall
Product slogan: Precise protection makes website security easy
Product Brands
SkyQuest Web Application Security Gateway product, ranked No. 1 in the hardware WAF market in Greater China and China by Frost & Sullivan in 2018, 2019, and 2020, and shortlisted in the Gartner Magic Quadrant in 2017.
Products
SkyQuest Web Application Security GatewayIt is a new-generation Web security protection and application delivery application security product developed by Qixingchen, which is used to defend against attacks targeting Web application vulnerabilities and to target the Web security system. server (computer)HTTP/HTTPS traffic analysis and optimization of all aspects of web application access to improve web orreticulationAvailability, performance, and security of protocol applications to ensure secure, fast, and reliable delivery of Web business applications.
Functional Features
- Web Application Protection
SkyQuest WAF can accurately identify and protect against common Web attacks:
- Basic attacks based on HTTP/HTTPS protocols such as worm attacks, Trojan backdoors, spyware, grayware, phishing, and more;
- CGI scanning, vulnerability scanning and other scanning attacks;
- Weak password protection;
- Slow attack protection;
- Honeypot detection;
- SQL injection attacks, XSS attacks, and other Web attacks;
- Application Layer Dos Protection;
- Threat intelligence;
- Web Unauthorized Access Protection
SkyQuest WAF can accurately identify and protect against common Web unauthorized access attacks:
- CSRF Attack Protection
- Cookie tampering protection
- Protection against website chain theft
- Brute Force Protection
- Web Malicious Code Protection
SkyQuest WAF can accurately identify and protect against common Web malicious code attacks:
- Web Horse Protection
- WebShell Protection
- anti-escape
- Web Application Compliance
SkyQuest WAF can accurately identify and protect against common web application compliance:
- URL-based access control
- HTTP protocol compliance
- sensitive informationleakage protection
- File upload and download control
- Web Form Keyword Filtering
- source area access control
- Web Application Delivery
SkyQuest WAF is able to accelerate and distribute traffic to Web applications:
- anti-tampering webpage
- URL-based traffic control
- Web Application Acceleration
- Multi-server load balancing
Web Application Protection Event Library
Tianqing WAF products have built-in Web application protection event library, which contains all kinds of Web security related event characteristics. Qishen provides regular and unexpected Web security event emergency upgrade service, which can provide fast response to the latest, unexpected and hot Web attacks. ADLAB (Active Defense Laboratory) of Qisda has a large number of vulnerability discovery and analysis personnel, and is the team with the largest number of independently discovered CVE vulnerabilities in China.
- Centralized management and event analysis
Tianqing WAF provides perfect centralized management function, which can realize distributed deployment and centralized management; it can monitor the connection status and traffic information of Web traffic in real time, and monitor the effect of improving the delivery quality of Web servers after WAF protection in real time; it has rich statistical analysis function of Web security events and detailed report function of Web security events, which is suitable for operation and maintenance personnel to query and analyze specific events; it is also suitable for analysis and decision making of security conditions. With rich Web security event statistics and analysis functions and detailed Web security event report functions, it is suitable for operation and maintenance personnel to query and analyze specific events, as well as to analyze and make decisions on security conditions.
Product Model
user needs
typical application
- Bridge mode deployment
Accessed in bridge mode, no need to adjust and change the topology of the user's network, no need to change the user's original network configuration, to realize the protection of the Web server.
- Agent Mode Deployment
In the proxy deployment mode, the real IP address of the web server can be completely hidden from the accessing users, effectively guaranteeing the security of the web server.
- Deployment in single-arm mode
In single-arm deployment mode, only one network interface is applied to filter intranet traffic, without changing the existing network structure and IP settings, and configuration is fast.
- BYPASS
As a serial security protection device, the product provides both soft and hard BYPASS functions under bridge mode deployment conditions to ensure continuous operation of the business.
