Application Defence

The huge variety of applications mean that fully securing an application platform can be challenging. To secure a platform you must fully understand the hardware, software and application stack, and what versions of each are running and what vulnerabilities each of them has.

In addition, where an application is interfacing to a non-secure system such as the internet, a clear understanding of all approved traffic - its source, destination and format - is essential.

Our Managed Security Service protects key applications in a number of ways. It ensures that any specific version-related vulnerabilities are identified so mitigation can be scheduled. It monitors key applications to ensure that if they are attacked, action is taken before any compromise takes place. By maintaining the rules and configurations that protect your applications, we protect them from current threats

Key Features:

• Web Application Firewall

  Applies a set of rules to all WAF traffic to detect common attacks such a cross scripting and SQL injection and modifies the rules as attacks evolve.

• Application and OS Patch Levels

  Maintains a database of applications, components and operating systems and cross-references with new vulnerabilities as they are identified.

• Unusual Application Performance and Activity

  Monitors changes in application performance and activity to indicate if there has been a compromise or an attack is underway.

• Application Configuration Protection

  Monitors important files and directories to highlight any changes to configuration settings of applications or services.

What is a Web Application Firewall (WAF)?

A web application firewall (WAF) is a specific form of firewall that filters, monitors and crucially blocks unwanted HTTP traffic between a web application and the internet. Effectively working as a shield, this helps to prevent attacks that look to expose web application vulnerabilities and protect applications against attacks like file inclusion and XSS. It usually forms part of a wider security service that works as a holistic defence against a range of attacks.

How does Web Application Monitoring Work?

Web application monitoring works by constantly testing and verifying the proper function of a web application when responding to user inputs, such as logging in. Using an automation script, web application monitoring observes the user interactions and reports on the web application’s performance, sending alerts in the event of suspicious activity and blocking any potentially malicious HTTP traffic.

Why do I need a WAF?

A web application firewall is recommended as it provides critical protection against sophisticated and target cyber attacks that may otherwise go undetected, and have significant financial, reputational and compliance implications. It also reduces the pressure of constantly monitoring applications, as continual web application security testing is paramount. This allows organisations to direct their internal resources to other focus areas. Ultimately, it also assists in maintaining your reputation and market position, as data confidentiality is a key business concern when it comes to attracting and retaining customers.

What are the benefits of having a managed security service like iomart for Web Application Monitoring?

Our Managed Security Service protects key applications in a number of ways. It ensures that any specific version-related vulnerabilities are identified so mitigation can be scheduled. It monitors key applications to ensure that if they are attacked, action is taken before any compromise takes place. By maintaining the rules and configurations that protect your applications, we protect them from current threats