Application Security for Every Scale
my.defence
Cloud computing was not designed for security, although organizations such as Cloud Security Alliance (CSA) and Open Web Application Security Project (OWASP) are making great strides in helping the industry solve the myriad security problems confronting cloud computing. The benchmark guidelines established by the CSA in the document, Guidance for Critical Areas of Focus in Cloud Computing, is a great first step. This white paper is intended to pick up where the CSA guide left off in terms of defining what a distributed web application firewall (dWAF) should look like in order to meet the standards set within the CSA document.
Products hyperguard hyperguard Licensing modelTypical deployment hyperguard basic
hyperguard basic is the solution for small installations and an ideal completion for retailers of the category level 2-4 (PCI DSS), which can be secured against the common attacks (Blacklist) from the internet with small costs via basic protection. The plugin licence offers Baseline-Protection for a physical/virtual web server (Single CPU / Single Core) for 1 IP max. 50 vHosts and up to 10 applications. There is the opportunity to configurate or rather observe multiple web server via hyperguard basic over an optional available administration console. From AOD developed rulesets for application specific vulnerabilities, like Joomla, Typo3 are optional available.
( Due to the missing of enhanced protection functiones like Cookie-Handling hyperguard basic does not comply with the standards of the PCI DSS level 1. )
Typical deployment hyperguard premium
hyperguard Premium is the standard solution for companies with 1-5 web server and higher security standards for their web applications. The plugin will be installed on the web servers and scales with the capability of the web servers. The basic licence covers web application attack detection and protection for a physical/virtual server with max. 8 Processor-Cores, max. 500 vHosts and max. 100 applications. For additional web server a cost-effective upgrading licence is available.
(The licence condition for hyperguard Premium provides the operation for the plugin on an active web server.)
Typical deployment hyperguard proxy
hyperguard proxy is the appliance solution for an installation on a dedicated hardware (also as VMware Image available). hyperguard proxy is licensed per core. The basic licence covers web application attack detection and protection for one CPU/Core and can be developed per Core through the hyperguard proxy upgrading licence.
( For the flexible appliance the installation of hyperguard proxy occurs according to the licensing on a partner delievered hardware. The requirement for the use as a flexible appliance is the complete driver support for Linux. )
Typical deployment hyperguard enterprise
hyperguard enterprise is the solution for big installations with many web servers and many web applications. The basic licence covers web application attack detection (IDS) for all web servers/web applications (unlimited web servers and unlimited web applications) of the company. The web application protection (IPS) is licensed per application specific ruleset.
