Web application security integrated with F5's application traffic manager.
Adding application security to BIG-IP is now as simple as plug and protect.
The BIG-IP Application Security Module (ASM) runs on the BIG-IP application traffic management platform, providing robust application security with BIG-IP traffic management capabilities in a single system without the need to buy or install more hardware.
The ASM provides application layer protection from both targeted and generalised application attacks to ensure that applications are always available and performing optimally.
Together, you get a complete, robust solution that reduces box clutter, lowers maintenance and management costs, and provides a new level of proactive application protection while ensuring exceptional application performance.
F5 Application Security Module Datasheet
Key Benefits
Guaranteed Delivery
The ICSA-certified BIG-IP Application Security Module identifies, isolates, and blocks sophisticated attacks without impacting legitimate application transactions.
Optimised for Performance
Only valid application transactions are allowed; the rest are blocked. ASM utilises a highly efficient positive security model to validate each user transaction at the application level based on user session context, authorisation privileges, user input, and application response time.
Zero Day Defence
Unlike signature inspection methods, the ASM uses a positive security model to protect against entire classes of HTTP and HTTPS based threats (both known and unknown) rather than guarding against a limited list of known attacks. New attacks that can defeat signature inspection because they have no known signature are easily blocked by the positive security model.
Granular Control
With the ASM, signature and pattern inspection can optionally be deployed on an as-needed basis to augment firewalls and IPS system defences, guarding against network protocol attacks that are beyond the boundaries of those systems.
Detailed Statistics and Forensic Information
The ASM can record a wealth of application transaction and event information in its logs, which are invaluable for analysing application behaviour and recognising/preventing illegitimate user behaviour.
Plug and Protect
The ASM on the BIG-IP's TMOS architecture is easily nested in a company's web infrastructure. Once installed, the module's automated learning mechanism quickly and accurately builds security policies tailored to the unique requirements of the applications it protects, dramatically reducing policy management and manual configuration duties.
|
F5 Networks
