The Problem: Web applications represent a critical, if not the primary, customer interface for a growing number of organizations. In this environment, network firewalls are no longer sufficient to protect applications. Today’s multi-layer attacks increasingly target the application layer, where hidden vulnerabilities can be exploited with devastating effects on application availability, data security, customer confidence, and reputation, not to mention lost business and recovery costs. Application scanners identify vulnerabilities, but correcting them takes time and resources while the vulnerabilities themselves remain open to exploit. Effective security requires the ability to not only identify weaknesses, but to immediately mitigate them to defeat emerging and opportunistic threats.
The Solution: F5 BIG-IP Application Security Manager (ASM) secures applications in traditional, virtual, and private cloud environments, providing layer 7 protection against the latest threats, including distributed denial-of-service (DDoS) and diverse distributed denial-of-service (3DoS) attacks. IBM Security AppScan performs both source testing within the data center and dynamic testing at the Internet interface. BIG-IP ASM, in addition to being an effective web application firewall, works with IBM Security AppScan to secure applications against vulnerabilities. BIG-IP ASM interfaces with IBM Security AppScan, processing scanning results so vulnerabilities can be rapidly mitigated with minimal effort through the BIG-IP ASM GUI. Vulnerability information can prompt quick, semi-automated creation and enforcement of new policies until recoding or other permanent fixes can occur. By combining data center and application firewall services with convenient management of scanning results and responses, BIG-IP ASM and IBM Security AppScan simplify the security infrastructure, increase the integrity of critical applications, and reduce the complexity and costs of security compliance.
Replay for this webinar is located here.