Delivery of Applications
About the solution
As the functionality of an application grows and its importance grows for the company’s business, it also increases the risk that its eventual compromise could damage the company’s reputation or make direct or indirect financial damage. Malicious programs find their way to the users in two ways: by exploiting weaknesses in the application code itself and using malicious programs installed on user computers.
Lately there are more and more interesting products that offer protection against online fraud and in accordance with security trends, companies are developing an anti-fraud portfolio that offers solutions for the security of users of online banking applications, web shops or insurance companies.
KEMP
KEMP LoadMaster are advanced ADC products (Application Delivery Controller) that integrate server load balancing functions, Layer 7 content switching, SSL traffic acceleration and application availability checking, with affinity (sticky sessions) mechanism, cache and compression of traffic in real time, have IPS and web application firewall, re-authenticate users, and can provide SSL VPN termination with single sign-on functionality.
Edge Security Pack (ESP), along with high-performance SSL, VPN termination and acceleration, provides multiple authentication and authorization. ESP includes integration with the active directory, RADIUS authentication support, and dual authentication with RSA SecurID.
Application Firewall Pack (AFP) delivers web application firewall features right next to an application, addressing exploiters such as SQL injection and cross site scripting, is able to process and secure encrypted web traffic and works as an exfiltration control (unauthorized outflow) sensitive personal information and credit card information, enabling companies to harmonize their business with PCI-DSS requirements.
KEMP ADC are the only products that support four different deployment models: hardware, virtual, cloud and bar-metal – without changes in features or ease of management.
F5
The company F5 Networks has developed an anti‑fraud portfolio that offers two solutions that ensure the protection of users of online banking applications. These are the WebSafe and MobileSafe solutions, which in principle offer the same functionality, however, the WebSafe solution provides protection to users who access applications via Internet browsers, while MobileSafe protects those who use mobile applications on their portable devices.
The F5 anti-fraud solution provides protection against a whole range of malicious activities, such as phishing attacks, Man‑in‑the‑Middle or Man‑in‑the‑Browser attacks, HTML code injection, modifying user transactions.
An essential part of the F5 anti-fraud solution is the F5 Security Operation Center, where F5 security experts monitor and analyze threats and malicious activities occurring at end users.
What makes F5 stand out among all of them is the fact that it is a clientless solution, which means that there is no need for users to install any additional software on their computers – the solution works without any interaction with the end user. In addition, the solution is completely independent of the user’s operating system and Internet browser, as well as the type of device used.