dotDefender- Website security made simple

Home ยป Products

dotDefender Technology

Effective Web Application Security

 
dotDefender is a software based Web Application Firewall. dotDefender complements the network firewall, IPS and other network-based Internet security products by intercepting seemingly legitimate users attempting to use the web applications to commit fraud or gain unauthorized access to valuable and confidential information. dotDefender inspects the HTTP/HTTPS traffic for suspicious behavior. dotDefender protects websites against web application attacks.
 
dotDefender leverages breakthrough security technology to achieve unmatched levels of protection, dotDefender's unique security approach eliminates the need to learn the specific idiosyncracies of each application. The software focuses on analyzing the request and its impact on the application. Effective web application security is based on three powerful web application security engines:
 
  • Pattern Recognition -- The Pattern Recognition web application security engine effectively protects against malicious behavior such as SQL injection and Cross Site Scripting. The patterns are designed efficiently and accurately to identify application-level attacks. As a consequence, dotDefender is characterized by an extremely low false positive rate.
 
  • Session Protection -- The Session Protection web application security engine focuses on the user session. Session Protection prevents session cookie tampering and blocks attempts to crash the server or reduce server performance by flooding the application with multiple requests on the same session.
 
  • Signature Knowledgebase -- This web application security engine uses signatures to detect requests from known malicious sources such as bots, zombies and spammers. It identifies bad user agents and prevents hacking tools from gathering information about vulnerabilities in Web applications.

 

 web application security engines