Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cloud Security

Incapsula Boosts DDoS Attack Protections With New Security Rules Engine

New Rules Engine Boosts Defense Capabilities Against DDoS and Sophisticated Layer-7 Application Attacks

New Rules Engine Boosts Defense Capabilities Against DDoS and Sophisticated Layer-7 Application Attacks

Incapsula, a cloud-based website performance and security service, today announced a new security rules engine designed to help quickly remediate complex application level (7) and business logic attacks. 

According to the company, the new engine and “InRules” security scripting language let customers create complex, granular security rules that are implemented and enforced instantly across Incapsula’s global network. These rules can be either manually coded or generated via a graphical user interface (GUI) that helps users with the rule generation process, the company explained.

New capabilities include:

Granular access control: Provides the ability to restrict access to a specific web resource (application, URL, parameter) per IP, country, or client type.

Focused mitigation: Applies mitigation rules with a fine tuned response only where needed. For example: Restricting the rate of account signups per IP and/or session, and requiring the client to pass a transparent browser integrity check.

Application flow enforcement: Enforces application logic such as parameter content and format validation, allowed rates, and flow enforcement. For example: Requiring a customer to submit a form before allowing them to move to checkout.

Additionally, InRules has a validation feature that helps prevent scripting errors, as well as a revision management system that helps track changes and allows users to revert to a previous rule version.

Advertisement. Scroll to continue reading.

“Driven by our InRules security language, our new security engine allows customers to apply even those most complex, granular rules across our worldwide network in just seconds, for the first time giving customers the same controls as our security team,” said Gur Shatz, CEO of Incapsula.

Late last year, the company rolled out new capabilities that give users total control over their caching and acceleration policies, enabling them to take advantage of Incapsula’s dynamic application profiling, caching and acceleration capabilities.

Incapsulas cloud-based service helps protect websites from threats such as DDoS attacks, illegal access attempts, spammers, scrapers and other malicious bots, and also addresses the entire OWASP’s Top 10 vulnerabilities list. The company is a spin-off and backed by data security firm Imperva.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

CISO Conversations

SecurityWeek talks to Billy Spears, CISO at Teradata (a multi-cloud analytics provider), and Lea Kissner, CISO at cloud security firm Lacework.

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online.

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...